Microsoft (R) Windows 2000 (TM) Version 5.00 DrWtsn32 Copyright (C) 1985-1999 Microsoft Corp. All rights reserved. 发生应用程序意外错误: 应用程序: (pid=1228) 时间: 2003-5-22 @ 14:33:16.937 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 176 winlogon.exe 228 services.exe 240 lsass.exe 408 svchost.exe 440 spoolsv.exe 472 svchost.exe 508 regsvc.exe 524 MSTask.exe 576 WinMgmt.exe 588 svchost.exe 784 Explorer.exe 864 internat.exe 896 AcroTray.exe 788 wuauclt.exe 452 conime.exe 1008 cdplayer.exe 1176 cmd.exe 1016 WINWORD.exe 1120 AgentSvr.exe 1228 Acrobat.exe 1064 drwtsn32.exe 0 _Total.exe (00400000 - 00919000) (77F80000 - 77FFB000) (08000000 - 0816D000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77D90000 - 77DED000) (786F0000 - 78761000) (78F90000 - 791D6000) (77C50000 - 77C9A000) (77B30000 - 77BB9000) (77A30000 - 77B25000) (77530000 - 77560000) (777E0000 - 777E7000) (75950000 - 75956000) (76AF0000 - 76B2D000) (78000000 - 78046000) (777C0000 - 777DE000) (75010000 - 75020000) (77990000 - 77A2B000) (75280000 - 7529F000) (07000000 - 07027000) (05000000 - 0506F000) (09000000 - 09016000) (06000000 - 06140000) (75E00000 - 75E1A000) (6DD30000 - 6DD36000) (74840000 - 7484B000) (74FD0000 - 74FDA000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (76BC0000 - 76C33000) (72C50000 - 72CD5000) (1F9C0000 - 1FA36000) (6AFF0000 - 6AFF6000) (1FA50000 - 1FA60000) (44000000 - 44086000) (76AC0000 - 76AC5000) (77270000 - 772DC000) (75A40000 - 75A48000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (77BF0000 - 77C4E000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (11000000 - 11010000) (6A280000 - 6A3D2000) (77810000 - 7784D000) (77080000 - 770A3000) (76F60000 - 76F6F000) (773A0000 - 773B5000) (6B020000 - 6B033000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (6D990000 - 6DA3B000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (76590000 - 76602000) 线程 ID 0x408 的状态转储 eax=03960000 ebx=00000000 ecx=00001000 edx=00000000 esi=00000284 edi=0012f62c eip=77f83786 esp=0012f4ac ebp=0012f7b8 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:00c8ca7f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0012F7B8 004790D4 0012F7F4 0012FFB0 0012FFC0 00473735 ntdll!NtWaitForSingleObject 0012F7C8 00473735 C0000005 0012F7F4 004756B7 0012F7FC ! 0012FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 ! 0012FFF0 00000000 0047364D 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0012f4ac 46 16 e8 77 84 02 00 00 - 01 00 00 00 00 00 00 00 F..w............ 0012f4bc 88 c8 72 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ..r............. 0012f4cc 00 00 00 00 00 00 00 00 - 64 72 77 74 73 6e 33 32 ........drwtsn32 0012f4dc 20 2d 70 20 31 32 32 38 - 20 2d 65 20 36 34 34 20 -p 1228 -e 644 0012f4ec 2d 67 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 -g.............. 0012f4fc 00 00 00 00 30 f5 12 00 - 00 00 00 00 e5 38 f8 77 ....0........8.w 0012f50c 00 00 13 00 88 7d 17 00 - 00 00 00 00 0c f5 12 00 .....}.......... 0012f51c 88 06 13 00 c0 f5 12 00 - 95 2b f8 77 a0 61 61 03 .........+.w.aa. 0012f52c d0 1f 61 03 60 f5 12 00 - 00 00 00 00 e5 38 f8 77 ..a.`........8.w 0012f53c 00 00 61 03 88 1e 61 03 - 00 00 00 00 3c f5 12 00 ..a...a.....<... 0012f54c 88 06 61 03 f0 f5 12 00 - 95 2b f8 77 20 39 f8 77 ..a......+.w 9.w 0012f55c ff ff ff ff 00 f6 12 00 - 40 b7 fc 77 38 0e 61 03 ........@..w8.a. 0012f56c a1 53 f8 77 90 f1 fc 77 - 86 53 f8 77 a8 f5 12 00 .S.w...w.S.w.... 0012f57c 00 00 00 00 e5 38 f8 77 - 00 00 13 00 f0 2e 19 00 .....8.w........ 0012f58c 00 00 00 00 84 f5 12 00 - 88 06 13 00 38 f6 12 00 ............8... 0012f59c 00 00 13 00 c8 b0 18 00 - 00 00 00 00 9c f5 12 00 ................ 0012f5ac 00 00 13 00 c8 b0 18 00 - 00 00 00 00 60 f6 12 00 ............`... 0012f5bc 95 b7 fc 77 00 00 13 00 - 7e b8 fc 77 08 06 13 00 ...w....~..w.... 0012f5cc e3 b7 fc 77 00 00 00 00 - d0 b0 18 00 0c 00 00 00 ...w............ 0012f5dc 00 00 00 00 01 00 00 00 - 00 00 01 00 44 00 00 00 ............D... 线程 ID 0x470 的状态转储 eax=787024c2 ebx=0016c8a8 ecx=0016aaa4 edx=00000000 esi=0016c760 edi=00000100 eip=77f83bb8 esp=0148fe28 ebp=0148ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:01fed3fb=49644136 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0148FF74 787020D9 78702528 0016C760 00000000 4016C2DC ntdll!NtReplyWaitReceivePortEx 0148FFA8 787024DA 0016C738 0148FFEC 77E687DD 0016C8A8 rpcrt4!NdrConformantArrayMemorySize 0148FFB4 77E687DD 0016C8A8 00000000 4016C2DC 0016C8A8 rpcrt4!NdrConformantArrayMemorySize 0148FFEC 00000000 787024C2 0016C8A8 00000000 00000008 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0148fe28 85 22 70 78 b8 00 00 00 - 54 ff 48 01 00 00 00 00 ."px....T.H..... 0148fe38 e8 fa 16 00 58 ff 48 01 - d8 a4 16 00 38 c7 16 00 ....X.H.....8... 0148fe48 a8 c8 16 00 b4 9b da bf - 0c 11 45 80 48 70 00 e1 ..........E.Hp.. 0148fe58 c0 57 89 81 bc 9c da bf - a8 95 89 81 b0 9c da bf .W.............. 0148fe68 78 73 00 e1 00 00 00 00 - 00 00 00 00 b4 9b da bf xs.............. 0148fe78 77 14 45 80 01 00 00 00 - c0 57 89 81 00 00 00 00 w.E......W...... 0148fe88 10 00 f8 00 2a 19 2f 81 - 7c 00 f8 00 3a 19 2f 81 ....*./.|...:./. 0148fe98 78 73 00 e1 a8 95 89 81 - 90 73 00 e1 00 00 00 00 xs.......s...... 0148fea8 1f 00 00 00 10 96 89 81 - 10 96 89 81 00 00 00 00 ................ 0148feb8 01 00 00 00 10 9c da bf - 00 00 00 00 58 ed ca e2 ............X... 0148fec8 d4 9b da bf 00 00 00 00 - 72 4f 41 80 30 97 89 81 ........rOA.0... 0148fed8 c0 57 89 81 c4 9c da bf - ca 08 45 80 04 00 00 00 .W........E..... 0148fee8 28 19 2f 81 66 41 4a 80 - 80 f3 12 00 00 00 00 00 (./.fAJ......... 0148fef8 48 f3 12 00 89 8b 4d 00 - 00 00 00 00 00 00 00 00 H.....M......... 0148ff08 01 00 00 00 08 2a 50 c0 - ef 00 00 00 00 20 50 c0 .....*P...... P. 0148ff18 00 00 00 00 00 00 00 00 - ef 00 00 00 01 00 00 00 ................ 0148ff28 00 20 50 c0 40 57 2c 81 - e0 b4 42 81 00 00 00 00 . P.@W,...B..... 0148ff38 e0 b4 42 81 70 b6 42 81 - 64 9c da bf f3 da 42 80 ..B.p.B.d.....B. 0148ff48 a4 da 42 80 d4 4b 06 80 - 40 b6 42 81 e0 b4 42 81 ..B..K..@.B...B. 0148ff58 00 a2 2f 4d ff ff ff ff - 50 fe 48 01 ff ff ff ff ../M....P.H..... 线程 ID 0x4d8 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffde000 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=02fdfd24 ebp=02fdfd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:03b3d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02FDFD70 77E6A31D 02FDFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 02FDFFB4 77E687DD 00000005 0018614C 7FFDE000 00171128 kernel32!WaitForMultipleObjects 02FDFFEC 00000000 777F21FE 00171128 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02fdfd24 b7 7a e6 77 04 00 00 00 - 48 fd fd 02 01 00 00 00 .z.w....H....... 02fdfd34 00 00 00 00 00 00 00 00 - 01 00 00 00 28 11 17 00 ............(... 02fdfd44 01 00 00 00 10 02 00 00 - a4 01 00 00 30 02 00 00 ............0... 02fdfd54 14 03 00 00 68 7a 5e bc - 03 53 06 80 00 00 00 00 ....hz^..S...... 02fdfd64 00 00 00 00 68 7a 5e bc - 00 00 00 00 b4 ff fd 02 ....hz^......... 02fdfd74 1d a3 e6 77 48 fd fd 02 - 01 00 00 00 00 00 00 00 ...wH........... 02fdfd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 02fdfd94 b0 fe fd 02 00 00 00 00 - ff ff ff ff 28 11 17 00 ............(... 02fdfda4 00 e0 fd 7f 4c 61 18 00 - 94 1b 34 81 00 00 00 00 ....La....4..... 02fdfdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 02fdfdc4 23 00 00 00 23 00 00 00 - 4c 61 18 00 00 e0 fd 7f #...#...La...... 02fdfdd4 28 11 17 00 00 e0 fd 7f - 00 e0 fd 7f fe 21 7f 77 (............!.w 02fdfde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 02fdfdf4 fc ff fd 02 23 00 00 00 - 4c 98 89 81 02 d2 00 00 ....#...L....... 02fdfe04 6f ce 42 80 89 ce 42 80 - f8 e7 a0 81 98 44 47 80 o.B...B......DG. 02fdfe14 55 d2 00 00 50 7b 5e bc - 24 83 44 80 70 2c 48 80 U...P{^.$.D.p,H. 02fdfe24 00 00 00 00 00 00 00 00 - 55 d2 00 00 f8 e7 a0 81 ........U....... 02fdfe34 00 07 00 00 ae cc 44 80 - 55 d2 00 00 f8 e7 a0 81 ......D.U....... 02fdfe44 55 d2 00 00 f8 e7 a0 81 - 01 72 fd 7f 5d 01 00 00 U........r..]... 02fdfe54 41 d6 44 80 5d 01 00 00 - 50 06 2b 81 00 70 fd 7f A.D.]...P.+..p.. 线程 ID 0x4d4 的状态转储 eax=00000000 ebx=0381c528 ecx=00000713 edx=00000000 esi=77f8377b edi=00000120 eip=77f83786 esp=0381c50c ebp=0381c530 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:04379adf=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0381C530 77E67837 00000120 00000000 00000000 74FB1415 ntdll!NtWaitForSingleObject 0381C570 74F520BC 000003E9 0000026C 0381C664 0017BBF8 kernel32!WaitForSingleObject 0381C69C 74FB13B7 00000002 00000001 00000006 0017BBF8 msafd! 0381C720 74FBC366 00000002 00000001 00000006 00000000 ws2_32!WSASocketW 0381C748 76BD64D0 00000002 00000001 00000006 001933A0 ws2_32!socket 00000001 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetOptionW *----> 原始堆栈转储 <----* 0381c50c 0f 78 e6 77 20 01 00 00 - 00 00 00 00 28 c5 81 03 .x.w .......(... 0381c51c a0 bb 17 00 a0 bb 17 00 - f8 3e 19 00 00 00 00 00 .........>...... 0381c52c 00 00 00 00 70 c5 81 03 - 37 78 e6 77 20 01 00 00 ....p...7x.w ... 0381c53c 00 00 00 00 00 00 00 00 - 15 14 fb 74 20 01 00 00 ...........t ... 0381c54c 00 00 00 00 f7 13 fb 74 - 20 01 00 00 80 93 f6 74 .......t ......t 0381c55c 9b 16 fb 74 00 00 00 00 - 80 93 f6 74 f8 3e 19 00 ...t.......t.>.. 0381c56c ff ff ff ff 9c c6 81 03 - bc 20 f5 74 e9 03 00 00 ......... .t.... 0381c57c 6c 02 00 00 64 c6 81 03 - f8 bb 17 00 00 00 00 00 l...d........... 0381c58c 00 00 00 00 90 67 17 00 - b8 1a 1a 00 ff ff ff ff .....g.......... 0381c59c 2c 6f cc 3e 05 00 00 00 - 16 00 00 00 08 53 1b 00 ,o.>.........S.. 0381c5ac 43 00 00 00 84 01 00 00 - 01 00 00 00 00 00 00 00 C............... 0381c5bc 98 d6 18 00 28 00 2a 00 - 00 12 f5 74 f8 3e 19 00 ....(.*....t.>.. 0381c5cc 18 00 00 00 00 00 00 00 - c0 c5 81 03 42 00 00 00 ............B... 0381c5dc 00 00 00 00 00 00 00 00 - 6c 02 00 00 30 32 19 00 ........l...02.. 0381c5ec 28 00 18 00 b0 1a 1a 00 - 66 00 02 00 16 00 18 00 (.......f....... 0381c5fc 20 11 f9 74 00 00 00 00 - 00 0f 28 00 41 66 64 4f ..t......(.AfdO 0381c60c 70 65 6e 50 61 63 6b 65 - 74 58 58 00 00 00 00 00 penPacketXX..... 0381c61c 00 00 00 00 16 00 00 00 - 5c 00 44 00 65 00 76 00 ........\.D.e.v. 0381c62c 69 00 63 00 65 00 5c 00 - 54 00 63 00 70 00 00 00 i.c.e.\.T.c.p... 0381c63c 88 c6 81 03 95 2b f8 77 - 08 36 f8 77 ff ff ff ff .....+.w.6.w.... 线程 ID 0x370 的状态转储 eax=03863b74 ebx=0395ffac ecx=60858c58 edx=77f8e639 esi=03863b9c edi=00000002 eip=60858c58 esp=03863adc ebp=03863afc iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00010246 函数: 60858c4e ??? 60858c4f ??? 60858c50 ??? 60858c51 ??? 60858c52 ??? 60858c53 ??? 60858c54 ??? 60858c55 ??? 60858c56 ??? 60858c57 ??? 错误 ->60858c58 ??? 60858c59 ??? 60858c5a ??? 60858c5b ??? 60858c5c ??? 60858c5d ??? 60858c5e ??? 60858c5f ??? 60858c60 ??? 60858c61 ??? 60858c62 ??? 60858c63 ??? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03863AD8 77F8E440 03863B9C 0395FFAC 03863BB8 03863B74 03863AFC 77F8E4DB 03863B9C 0395FFAC 03863BB8 03863B74 ntdll!RtlSetBits 03863B84 77FA0316 03863B9C 03863BB8 03863B9C 03863BB8 ntdll!RtlSetBits 03863EA4 77F8E4DB 03863F44 0395FFAC 03863F60 03863F1C ntdll!KiUserExceptionDispatcher 03863F2C 77FA0316 03863F44 03863F60 03863F44 03863F60 ntdll!RtlSetBits 0386424C 77F8E4DB 038642EC 0395FFAC 03864308 038642C4 ntdll!KiUserExceptionDispatcher 038642D4 77FA0316 038642EC 03864308 038642EC 03864308 ntdll!RtlSetBits 038645F4 77F8E4DB 03864694 0395FFAC 038646B0 0386466C ntdll!KiUserExceptionDispatcher 0386467C 77FA0316 03864694 038646B0 03864694 038646B0 ntdll!RtlSetBits 0386499C 77F8E4DB 03864A3C 0395FFAC 03864A58 03864A14 ntdll!KiUserExceptionDispatcher 03864A24 77FA0316 03864A3C 03864A58 03864A3C 03864A58 ntdll!RtlSetBits 03864D44 77F8E4DB 03864DE4 0395FFAC 03864E00 03864DBC ntdll!KiUserExceptionDispatcher 03864DCC 77FA0316 03864DE4 03864E00 03864DE4 03864E00 ntdll!RtlSetBits 038650EC 77F8E4DB 0386518C 0395FFAC 038651A8 03865164 ntdll!KiUserExceptionDispatcher 03865174 77FA0316 0386518C 038651A8 0386518C 038651A8 ntdll!RtlSetBits 03865494 77F8E4DB 03865534 0395FFAC 03865550 0386550C ntdll!KiUserExceptionDispatcher 0386551C 77FA0316 03865534 03865550 03865534 03865550 ntdll!RtlSetBits 0386583C 77F8E4DB 038658DC 0395FFAC 038658F8 038658B4 ntdll!KiUserExceptionDispatcher 038658C4 77FA0316 038658DC 038658F8 038658DC 038658F8 ntdll!RtlSetBits 03865BE4 77F8E4DB 03865C84 0395FFAC 03865CA0 03865C5C ntdll!KiUserExceptionDispatcher 03865C6C 77FA0316 03865C84 03865CA0 03865C84 03865CA0 ntdll!RtlSetBits 03865F8C 77F8E4DB 0386602C 0395FFAC 03866048 03866004 ntdll!KiUserExceptionDispatcher 03866014 77FA0316 0386602C 03866048 0386602C 03866048 ntdll!RtlSetBits 03866334 77F8E4DB 038663D4 0395FFAC 038663F0 038663AC ntdll!KiUserExceptionDispatcher 038663BC 77FA0316 038663D4 038663F0 038663D4 038663F0 ntdll!RtlSetBits 038666DC 77F8E4DB 0386677C 0395FFAC 03866798 03866754 ntdll!KiUserExceptionDispatcher 03866764 77FA0316 0386677C 03866798 0386677C 03866798 ntdll!RtlSetBits 03866A84 77F8E4DB 03866B24 0395FFAC 03866B40 03866AFC ntdll!KiUserExceptionDispatcher 03866B0C 77FA0316 03866B24 03866B40 03866B24 03866B40 ntdll!RtlSetBits 03866E2C 77F8E4DB 03866ECC 0395FFAC 03866EE8 03866EA4 ntdll!KiUserExceptionDispatcher 03866EB4 77FA0316 03866ECC 03866EE8 03866ECC 03866EE8 ntdll!RtlSetBits 038671D4 77F8E4DB 03867274 0395FFAC 03867290 0386724C ntdll!KiUserExceptionDispatcher 0386725C 77FA0316 03867274 03867290 03867274 03867290 ntdll!RtlSetBits 0386757C 77F8E4DB 0386761C 0395FFAC 03867638 038675F4 ntdll!KiUserExceptionDispatcher 03867604 77FA0316 0386761C 03867638 0386761C 03867638 ntdll!RtlSetBits 03867924 77F8E4DB 038679C4 0395FFAC 038679E0 0386799C ntdll!KiUserExceptionDispatcher 038679AC 77FA0316 038679C4 038679E0 038679C4 038679E0 ntdll!RtlSetBits 03867CCC 77F8E4DB 03867D6C 0395FFAC 03867D88 03867D44 ntdll!KiUserExceptionDispatcher 03867D54 77FA0316 03867D6C 03867D88 03867D6C 03867D88 ntdll!RtlSetBits 03868074 77F8E4DB 03868114 0395FFAC 03868130 038680EC ntdll!KiUserExceptionDispatcher 038680FC 77FA0316 03868114 03868130 03868114 03868130 ntdll!RtlSetBits 0386841C 77F8E4DB 038684BC 0395FFAC 038684D8 03868494 ntdll!KiUserExceptionDispatcher 038684A4 77FA0316 038684BC 038684D8 038684BC 038684D8 ntdll!RtlSetBits 038687C4 77F8E4DB 03868864 0395FFAC 03868880 0386883C ntdll!KiUserExceptionDispatcher 0386884C 77FA0316 03868864 03868880 03868864 03868880 ntdll!RtlSetBits 03868B6C 77F8E4DB 03868C0C 0395FFAC 03868C28 03868BE4 ntdll!KiUserExceptionDispatcher 03868BF4 77FA0316 03868C0C 03868C28 03868C0C 03868C28 ntdll!RtlSetBits 03868F14 77F8E4DB 03868FB4 0395FFAC 03868FD0 03868F8C ntdll!KiUserExceptionDispatcher 03868F9C 77FA0316 03868FB4 03868FD0 03868FB4 03868FD0 ntdll!RtlSetBits 038692BC 77F8E4DB 0386935C 0395FFAC 03869378 03869334 ntdll!KiUserExceptionDispatcher 03869344 77FA0316 0386935C 03869378 0386935C 03869378 ntdll!RtlSetBits 03869664 77F8E4DB 03869704 0395FFAC 03869720 038696DC ntdll!KiUserExceptionDispatcher 038696EC 77FA0316 03869704 03869720 03869704 03869720 ntdll!RtlSetBits 03869A0C 77F8E4DB 03869AAC 0395FFAC 03869AC8 03869A84 ntdll!KiUserExceptionDispatcher 03869A94 77FA0316 03869AAC 03869AC8 03869AAC 03869AC8 ntdll!RtlSetBits 03869DB4 77F8E4DB 03869E54 0395FFAC 03869E70 03869E2C ntdll!KiUserExceptionDispatcher 03869E3C 77FA0316 03869E54 03869E70 03869E54 03869E70 ntdll!RtlSetBits 0386A15C 77F8E4DB 0386A1FC 0395FFAC 0386A218 0386A1D4 ntdll!KiUserExceptionDispatcher 0386A1E4 77FA0316 0386A1FC 0386A218 0386A1FC 0386A218 ntdll!RtlSetBits 0386A504 77F8E4DB 0386A5A4 0395FFAC 0386A5C0 0386A57C ntdll!KiUserExceptionDispatcher 0386A58C 77FA0316 0386A5A4 0386A5C0 0386A5A4 0386A5C0 ntdll!RtlSetBits 0386A8AC 77F8E4DB 0386A94C 0395FFAC 0386A968 0386A924 ntdll!KiUserExceptionDispatcher 0386A934 77FA0316 0386A94C 0386A968 0386A94C 0386A968 ntdll!RtlSetBits 0386AC54 77F8E4DB 0386ACF4 0395FFAC 0386AD10 0386ACCC ntdll!KiUserExceptionDispatcher 0386ACDC 77FA0316 0386ACF4 0386AD10 0386ACF4 0386AD10 ntdll!RtlSetBits 0386AFFC 77F8E4DB 0386B09C 0395FFAC 0386B0B8 0386B074 ntdll!KiUserExceptionDispatcher 0386B084 77FA0316 0386B09C 0386B0B8 0386B09C 0386B0B8 ntdll!RtlSetBits 0386B3A4 77F8E4DB 0386B444 0395FFAC 0386B460 0386B41C ntdll!KiUserExceptionDispatcher 0386B42C 77FA0316 0386B444 0386B460 0386B444 0386B460 ntdll!RtlSetBits 0386B74C 77F8E4DB 0386B7EC 0395FFAC 0386B808 0386B7C4 ntdll!KiUserExceptionDispatcher 0386B7D4 77FA0316 0386B7EC 0386B808 0386B7EC 0386B808 ntdll!RtlSetBits 0386BAF4 77F8E4DB 0386BB94 0395FFAC 0386BBB0 0386BB6C ntdll!KiUserExceptionDispatcher 0386BB7C 77FA0316 0386BB94 0386BBB0 0386BB94 0386BBB0 ntdll!RtlSetBits 0386BE9C 77F8E4DB 0386BF3C 0395FFAC 0386BF58 0386BF14 ntdll!KiUserExceptionDispatcher 0386BF24 77FA0316 0386BF3C 0386BF58 0386BF3C 0386BF58 ntdll!RtlSetBits 0386C244 77F8E4DB 0386C2E4 0395FFAC 0386C300 0386C2BC ntdll!KiUserExceptionDispatcher 0386C2CC 77FA0316 0386C2E4 0386C300 0386C2E4 0386C300 ntdll!RtlSetBits 0386C5EC 77F8E4DB 0386C68C 0395FFAC 0386C6A8 0386C664 ntdll!KiUserExceptionDispatcher 0386C674 77FA0316 0386C68C 0386C6A8 0386C68C 0386C6A8 ntdll!RtlSetBits 0386C994 77F8E4DB 0386CA34 0395FFAC 0386CA50 0386CA0C ntdll!KiUserExceptionDispatcher 0386CA1C 77FA0316 0386CA34 0386CA50 0386CA34 0386CA50 ntdll!RtlSetBits 0386CD3C 77F8E4DB 0386CDDC 0395FFAC 0386CDF8 0386CDB4 ntdll!KiUserExceptionDispatcher 0386CDC4 77FA0316 0386CDDC 0386CDF8 0386CDDC 0386CDF8 ntdll!RtlSetBits 0386D0E4 77F8E4DB 0386D184 0395FFAC 0386D1A0 0386D15C ntdll!KiUserExceptionDispatcher 0386D16C 77FA0316 0386D184 0386D1A0 0386D184 0386D1A0 ntdll!RtlSetBits 0386D48C 77F8E4DB 0386D52C 0395FFAC 0386D548 0386D504 ntdll!KiUserExceptionDispatcher 0386D514 77FA0316 0386D52C 0386D548 0386D52C 0386D548 ntdll!RtlSetBits 0386D834 77F8E4DB 0386D8D4 0395FFAC 0386D8F0 0386D8AC ntdll!KiUserExceptionDispatcher 0386D8BC 77FA0316 0386D8D4 0386D8F0 0386D8D4 0386D8F0 ntdll!RtlSetBits 0386DBDC 77F8E4DB 0386DC7C 0395FFAC 0386DC98 0386DC54 ntdll!KiUserExceptionDispatcher 0386DC64 77FA0316 0386DC7C 0386DC98 0386DC7C 0386DC98 ntdll!RtlSetBits 0386DF84 77F8E4DB 0386E024 0395FFAC 0386E040 0386DFFC ntdll!KiUserExceptionDispatcher 0386E00C 77FA0316 0386E024 0386E040 0386E024 0386E040 ntdll!RtlSetBits 0386E32C 77F8E4DB 0386E3CC 0395FFAC 0386E3E8 0386E3A4 ntdll!KiUserExceptionDispatcher 0386E3B4 77FA0316 0386E3CC 0386E3E8 0386E3CC 0386E3E8 ntdll!RtlSetBits 0386E6D4 77F8E4DB 0386E774 0395FFAC 0386E790 0386E74C ntdll!KiUserExceptionDispatcher 0386E75C 77FA0316 0386E774 0386E790 0386E774 0386E790 ntdll!RtlSetBits 0386EA7C 77F8E4DB 0386EB1C 0395FFAC 0386EB38 0386EAF4 ntdll!KiUserExceptionDispatcher 0386EB04 77FA0316 0386EB1C 0386EB38 0386EB1C 0386EB38 ntdll!RtlSetBits 0386EE24 77F8E4DB 0386EEC4 0395FFAC 0386EEE0 0386EE9C ntdll!KiUserExceptionDispatcher *----> 原始堆栈转储 <----* 03863adc 40 e4 f8 77 9c 3b 86 03 - ac ff 95 03 b8 3b 86 03 @..w.;.......;.. 03863aec 74 3b 86 03 98 3e 86 03 - 39 e6 f8 77 ac ff 95 03 t;...>..9..w.... 03863afc 84 3b 86 03 db e4 f8 77 - 9c 3b 86 03 ac ff 95 03 .;.....w.;...... 03863b0c b8 3b 86 03 74 3b 86 03 - 58 8c 85 60 02 00 00 00 .;..t;..X..`.... 03863b1c 44 3f 86 03 9c 3b 86 03 - 00 00 00 00 00 00 00 00 D?...;.......... 03863b2c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03863b3c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03863b4c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03863b5c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03863b6c 00 00 00 00 00 00 00 00 - ac ff 95 03 00 00 96 03 ................ 03863b7c 00 30 86 03 ac ff 95 03 - a4 3e 86 03 16 03 fa 77 .0.......>.....w 03863b8c 9c 3b 86 03 b8 3b 86 03 - 9c 3b 86 03 b8 3b 86 03 .;...;...;...;.. 03863b9c 05 00 00 c0 10 00 00 00 - 00 00 00 00 58 8c 85 60 ............X..` 03863bac 02 00 00 00 00 00 00 00 - 58 8c 85 60 3f 00 01 00 ........X..`?... 03863bbc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03863bcc 00 00 00 00 00 00 00 00 - 7f 02 ff ff 00 00 ff ff ................ 03863bdc ff ff ff ff 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03863bec 00 00 ff ff 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03863bfc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03863c0c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 发生应用程序意外错误: 应用程序: (pid=1264) 时间: 2003-7-15 @ 16:11:34.531 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 408 svchost.exe 440 spoolsv.exe 472 svchost.exe 508 regsvc.exe 524 MSTask.exe 564 WinMgmt.exe 580 svchost.exe 888 internat.exe 896 AcroTray.exe 664 wuauclt.exe 852 conime.exe 800 explorer.exe 1092 WINWORD.exe 908 AgentSvr.exe 1264 Illustrator.exe 948 drwtsn32.exe 0 _Total.exe (00400000 - 00B03000) (77F80000 - 77FFB000) (10000000 - 1016D000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77D90000 - 77DED000) (786F0000 - 78761000) (78F90000 - 791D6000) (77C50000 - 77C9A000) (77B30000 - 77BB9000) (77A30000 - 77B25000) (77530000 - 77560000) (00230000 - 0025D000) (00260000 - 00298000) (00B10000 - 00DDB000) (00DE0000 - 00E53000) (00E60000 - 010A8000) (777C0000 - 777DE000) (75010000 - 75020000) (76AF0000 - 76B2D000) (78000000 - 78046000) (010B0000 - 010C7000) (777E0000 - 777E7000) (75950000 - 75956000) (010D0000 - 0142E000) (01430000 - 0146C000) (75E00000 - 75E1A000) (40000000 - 40538000) (6DD30000 - 6DD36000) (61800000 - 61907000) (6B020000 - 6B033000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (74840000 - 7484B000) (03D80000 - 03DDD000) (75A40000 - 75A48000) (60800000 - 6091D000) (77810000 - 7784D000) (77080000 - 770A3000) (04080000 - 0416A000) (20040000 - 20053000) (042C0000 - 042DC000) (206E0000 - 206F1000) (20280000 - 2028E000) (04610000 - 0462C000) (30060000 - 3009F000) (20AE0000 - 20B2A000) (21000000 - 2105D000) (214C0000 - 214F3000) (216A0000 - 216B1000) (04CB0000 - 04D17000) (202E0000 - 2030E000) (050C0000 - 050DE000) (051F0000 - 05208000) (20C20000 - 20C63000) (05570000 - 05692000) (6F130000 - 6F363000) (6E130000 - 6E1FD000) (058D0000 - 0591B000) (05C30000 - 05C90000) (20860000 - 2086D000) (20660000 - 20681000) (28060000 - 28075000) (31060000 - 310A0000) (21440000 - 21450000) (284A0000 - 284D5000) (06670000 - 06C7F000) (07810000 - 0783C000) (28040000 - 2805F000) (08BA0000 - 08BC3000) (216C0000 - 216D8000) (28680000 - 28699000) (08F10000 - 08F38000) (25480000 - 254B0000) (09170000 - 091AC000) (09440000 - 09719000) (773A0000 - 773B5000) (20E00000 - 20E1B000) (20CE0000 - 20CF0000) (09A90000 - 09ADA000) (204C0000 - 204DC000) (21260000 - 21311000) (20820000 - 20836000) (20840000 - 20857000) (0A2E0000 - 0A2F7000) (0A680000 - 0A688000) (0A7A0000 - 0A7D7000) (0A920000 - 0A97E000) (75FC0000 - 75FF3000) (781C0000 - 78200000) (0C9F0000 - 0CA1F000) (0DC60000 - 0DC76000) (0E210000 - 0E273000) (0E390000 - 0E3D5000) (0E4F0000 - 0E525000) (242A0000 - 242C2000) (200E0000 - 20109000) (0ED90000 - 0EDAF000) 线程 ID 0x2b0 的状态转储 eax=0e54da26 ebx=00000003 ecx=0ed2356f edx=0e54da4f esi=00a180ff edi=0ed2356f eip=0084ea75 esp=0012eb1c ebp=0012ee84 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00240202 函数: 0084ea5f 90 nop 0084ea60 8b442404 mov eax,[esp+0x4] ss:00c8c0ef=db853e74 0084ea64 8b4804 mov ecx,[eax+0x4] ds:0f0aaff8=???????? 0084ea67 8a5002 mov dl,[eax+0x2] ds:0f0aaff8=?? 0084ea6a 53 push ebx 0084ea6b 8b580c mov ebx,[eax+0xc] ds:0f0aaff8=???????? 0084ea6e 56 push esi 0084ea6f 668b30 mov si,[eax] ds:0e54da26=80ff 0084ea72 57 push edi 0084ea73 8bf9 mov edi,ecx 错误 ->0084ea75 6689341f mov [edi+ebx],si ds:00000003=???? 0084ea79 88541f02 mov [edi+ebx+0x2],dl ds:00b5d5d6=00 0084ea7d 03fb add edi,ebx 0084ea7f 8b780c mov edi,[eax+0xc] ds:0f0aaff8=???????? 0084ea82 66893479 mov [ecx+edi*2],si ds:0ed2356f=???? 0084ea86 88547902 mov [ecx+edi*2+0x2],dl ds:0f880b42=?? 0084ea8a 8d3c79 lea edi,[ecx+edi*2] ds:0ed2356f=???????? 0084ea8d 8b780c mov edi,[eax+0xc] ds:0f0aaff8=???????? 0084ea90 8d1c79 lea ebx,[ecx+edi*2] ds:0ed2356f=???????? 0084ea93 6689341f mov [edi+ebx],si ds:00000003=???? 0084ea97 88541f02 mov [edi+ebx+0x2],dl ds:00b5d5d6=00 0084ea9b 03fb add edi,ebx *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0012EE84 0081F9D1 0012EF1C 00000285 008F6F96 0012EF1C ! 0012F108 007FADBC 0F29E1B4 0012F4A0 00000000 0F37F1FC ! 00000000 00000000 00000000 00000000 00000000 00000000 ! *----> 原始堆栈转储 <----* 0012eb1c 64 d9 54 0e ec 7c a1 00 - d8 ee 12 00 cb 85 8f 00 d.T..|.......... 0012eb2c 26 da 54 0e da 00 00 00 - 6f 35 d2 0e 64 d9 54 0e &.T.....o5..d.T. 0012eb3c 08 00 00 00 fb 3d 11 04 - 39 00 00 00 48 ed 12 00 .....=..9...H... 0012eb4c 48 ed 12 00 30 ed 12 00 - 70 3c 11 04 ff ff ff ff H...0...p<...... 0012eb5c 48 ed 12 00 b0 09 ee 01 - 8c 30 a1 00 00 00 00 00 H........0...... 0012eb6c 49 dc e6 77 64 ec 12 00 - 7e 80 4a 01 03 00 00 00 I..wd...~.J..... 0012eb7c 64 ec 12 00 80 00 00 00 - 04 10 00 00 00 f7 da 01 d............... 0012eb8c 18 ec 12 00 00 00 00 00 - 00 00 00 00 21 00 00 00 ............!... 0012eb9c ff ff ff ff ff ff ff ff - 1f 00 00 00 f0 32 76 04 .............2v. 0012ebac be ef 12 00 64 eb 12 00 - 1c ef 12 00 24 ec 12 00 ....d.......$... 0012ebbc bc 6c 97 00 bc ef 12 00 - 3c 02 00 00 f2 d9 54 0e .l......<.....T. 0012ebcc 3c 02 00 00 01 00 00 00 - 6c ec 12 00 94 dc 84 00 <.......l....... 0012ebdc bc ef 12 00 3c 02 00 00 - ff 01 00 00 bc 6c 97 00 ....<........l.. 0012ebec ff 80 4f 00 3c 02 00 00 - ff 01 00 00 00 ec 01 00 ..O.<........... 0012ebfc 00 00 00 00 00 00 12 00 - 00 00 00 00 64 ec 00 00 ............d... 0012ec0c 00 00 32 00 00 00 00 00 - 3c ec 12 00 01 dd e6 77 ..2.....<......w 0012ec1c 28 51 64 00 24 ec 12 00 - ff 01 00 00 3c 02 00 00 (Qd.$.......<... 0012ec2c 31 02 00 00 3c 02 00 00 - 00 00 00 00 07 00 00 00 1...<........... 0012ec3c f2 d9 54 0e 31 7a 5a 00 - ff 01 00 00 3c 02 00 00 ..T.1zZ.....<... 0012ec4c 31 02 00 00 3c 02 00 00 - 3c 02 00 00 ec 7c a1 00 1...<...<....|.. 线程 ID 0x39c 的状态转储 eax=787024c2 ebx=001416e8 ecx=001398dc edx=00000000 esi=001415b8 edi=00000100 eip=77f83bb8 esp=029afe28 ebp=029aff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0350d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 029AFF74 787020D9 78702528 001415B8 00000000 40141134 ntdll!NtReplyWaitReceivePortEx 029AFFA8 787024DA 00141590 029AFFEC 77E687DD 001416E8 rpcrt4!NdrConformantArrayMemorySize 029AFFB4 77E687DD 001416E8 00000000 40141134 001416E8 rpcrt4!NdrConformantArrayMemorySize 029AFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1288) 时间: 2003-8-4 @ 16:11:54.390 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 424 svchost.exe 452 spoolsv.exe 480 ccEvtMgr.exe 496 svchost.exe 516 navapsvc.exe 548 regsvc.exe 692 MSTask.exe 752 WinMgmt.exe 804 svchost.exe 908 Explorer.exe 1036 daemon.exe 1044 Rundll32.exe 1052 ccApp.exe 1100 RealPlay.exe 1116 internat.exe 1132 AcroTray.exe 1372 RUNDLL32.exe 1412 RUNDLL32.exe 1156 wuauclt.exe 1456 cthighway.exe 956 Client.exe 952 conime.exe 1316 iexplore.exe 1536 IEXPLORE.exe 1288 IEXPLORE.exe 1168 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (78000000 - 78046000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01110000 - 01118000) (01160000 - 01170000) (01280000 - 0129C000) (012A0000 - 012B9000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (770F0000 - 772ED000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01510000 - 01527000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01BD0000 - 01BEB000) (01D00000 - 01D1E000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (75A60000 - 75A88000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (76DB0000 - 76DC1000) (77530000 - 77560000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75CE0000 - 75CE6000) 线程 ID 0x5dc 的状态转储 eax=00000000 ebx=000c7a90 ecx=000bf708 edx=00126b08 esi=00000000 edi=0006b278 eip=765bf9c8 esp=0006b248 ebp=0006b290 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: CoInternetCompareUrl 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1492) 时间: 2003-8-7 @ 12:26:16.578 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 424 svchost.exe 452 spoolsv.exe 480 ccEvtMgr.exe 496 svchost.exe 516 navapsvc.exe 548 regsvc.exe 692 MSTask.exe 752 WinMgmt.exe 804 svchost.exe 908 Explorer.exe 1036 daemon.exe 1044 Rundll32.exe 1052 ccApp.exe 1100 RealPlay.exe 1116 internat.exe 1132 AcroTray.exe 1372 RUNDLL32.exe 1412 RUNDLL32.exe 1156 wuauclt.exe 1456 cthighway.exe 956 Client.exe 952 conime.exe 1492 IEXPLORE.exe 1512 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (78000000 - 78046000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01210000 - 01218000) (01260000 - 01270000) (01380000 - 0139C000) (013A0000 - 013B9000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (770F0000 - 772ED000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01600000 - 01617000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01BE0000 - 01BFB000) (01D10000 - 01D2E000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (75A60000 - 75A88000) (759D0000 - 75A3B000) (02240000 - 023CD000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (6AC80000 - 6ACBC000) (751C0000 - 751D5000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (742E0000 - 742E5000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (688D0000 - 688DE000) (64260000 - 64288000) (6B6E0000 - 6B709000) 线程 ID 0x370 的状态转储 eax=00000004 ebx=00000000 ecx=00000001 edx=00000000 esi=0007a968 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 00FD01A0 0006EE88 0007A780 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007A780 00000001 0007A780 00000000 browseui!Ordinal102 0006EE90 76C66950 0007A780 76C6667E 0007A780 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F2 00000001 00401A46 000728F2 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F2 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 80 a7 07 00 00 00 00 00 .#.v............ 0006dd58 cc 01 1f 01 13 01 00 00 - 1f 6c 00 00 00 00 00 00 .........l...... 0006dd68 32 ce 8a 1e b8 01 00 00 - 42 01 00 00 00 00 00 00 2.......B....... 0006dd78 06 00 00 00 68 a9 07 00 - 01 44 00 80 28 53 07 00 ....h....D..(S.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 a0 01 fd 00 ........|!.v.... 0006dd98 88 ee 06 00 80 a7 07 00 - 00 00 00 00 00 00 00 00 ................ 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 74 00 00 00 - 00 de 06 00 b2 20 df 76 ....t........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 80 a7 07 00 - 01 00 00 00 80 a7 07 00 e..v............ 0006de28 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0006de38 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0006de48 00 00 00 00 00 00 00 00 - 00 00 00 00 88 de 06 00 ................ 0006de58 45 00 00 00 70 39 f8 77 - 00 00 07 00 78 13 07 00 E...p9.w....x... 0006de68 45 00 00 00 d8 21 07 00 - 60 de 06 00 00 02 00 00 E....!..`....... 0006de78 1c e0 06 00 95 2b f8 77 - b8 39 f8 77 ff ff ff ff .....+.w.9.w.... 线程 ID 0x208 的状态转储 eax=03ea7a30 ebx=77f8377b ecx=00000000 edx=00000000 esi=00000000 edi=00000001 eip=77f83786 esp=0148facc ebp=0148fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:01fed09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0148FB04 74F57EE6 000001F4 00000258 00000001 00000004 ntdll!NtWaitForSingleObject 0148FBF0 74FB1DA9 00000005 0148FE84 0148FC7C 0148FD80 msafd!WSPSetSockOpt 0148FC54 76BD6F2E 00000005 0148FE84 0148FC7C 0148FD80 ws2_32!select 0148FFB0 76BD6E24 77E687DD 000A2B88 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0148FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0148facc 62 bb f5 74 f4 01 00 00 - 01 00 00 00 f0 fa 48 01 b..t..........H. 0148fadc 84 fe 48 01 58 bf 0c 05 - 48 bf 0c 05 98 00 00 00 ..H.X...H....... 0148faec 00 00 00 00 c0 b4 b3 ff - ff ff ff ff 68 1a 09 00 ............h... 0148fafc 00 00 00 00 00 00 00 00 - f0 fb 48 01 e6 7e f5 74 ..........H..~.t 0148fb0c f4 01 00 00 58 02 00 00 - 01 00 00 00 04 00 00 00 ....X........... 0148fb1c 80 fd 48 01 f0 48 0a 00 - 7c fc 48 01 50 0b 78 ff ..H..H..|.H.P.x. 0148fb2c ff ff ff ff 80 bf 5b 51 - ff ff ff ff 58 02 00 00 ......[Q....X... 0148fb3c f4 01 00 00 00 00 00 00 - 00 00 00 00 90 fb 48 01 ..............H. 0148fb4c 17 20 01 00 80 fb 48 01 - 10 00 00 00 00 00 00 00 . ....H......... 0148fb5c 01 00 00 00 50 0b 78 ff - ff ff ff ff 00 00 00 00 ....P.x......... 0148fb6c ff ff ff ff 01 00 00 00 - 68 1a 09 00 f4 01 00 00 ........h....... 0148fb7c 01 00 00 00 24 fc 48 01 - 01 00 00 00 00 00 00 00 ....$.H......... 0148fb8c 20 00 00 00 00 00 00 00 - 01 00 00 00 00 00 00 00 ............... 0148fb9c ff ff ff ff 90 fb 48 01 - 00 00 00 00 00 00 00 00 ......H......... 0148fbac 68 1a 09 00 fc fb 48 01 - 04 00 00 00 48 bf 0c 05 h.....H.....H... 0148fbbc 8c 00 00 00 09 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0148fbcc 58 02 00 00 24 fc 48 01 - c4 bf 0c 05 1c fb 48 01 X...$.H.......H. 0148fbdc 24 fc 48 01 44 fc 48 01 - 36 df f5 74 78 30 f5 74 $.H.D.H.6..tx0.t 0148fbec ff ff ff ff 54 fc 48 01 - a9 1d fb 74 05 00 00 00 ....T.H....t.... 0148fbfc 84 fe 48 01 7c fc 48 01 - 80 fd 48 01 90 ff 48 01 ..H.|.H...H...H. 线程 ID 0x230 的状态转储 eax=00000003 ebx=00000004 ecx=00000101 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=0155fd24 ebp=0155fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:020bd2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0155FD70 77E6A31D 0155FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0155FFB4 77E687DD 00000005 000A4FEC 7FFDB000 000A7390 kernel32!WaitForMultipleObjects 0155FFEC 00000000 777F21FE 000A7390 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0155fd24 b7 7a e6 77 04 00 00 00 - 48 fd 55 01 01 00 00 00 .z.w....H.U..... 0155fd34 00 00 00 00 00 00 00 00 - 01 00 00 00 90 73 0a 00 .............s.. 0155fd44 01 00 00 00 20 02 00 00 - 24 02 00 00 34 02 00 00 .... ...$...4... 0155fd54 cc 02 00 00 00 c3 26 81 - a4 b3 28 81 02 00 00 00 ......&...(..... 0155fd64 30 02 00 00 11 00 00 00 - 02 00 00 00 b4 ff 55 01 0.............U. 0155fd74 1d a3 e6 77 48 fd 55 01 - 01 00 00 00 00 00 00 00 ...wH.U......... 0155fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 0155fd94 b0 fe 55 01 00 00 00 00 - ff ff ff ff 90 73 0a 00 ..U..........s.. 0155fda4 00 b0 fd 7f ec 4f 0a 00 - 00 00 00 00 3b 00 00 00 .....O......;... 0155fdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 0155fdc4 23 00 00 00 23 00 00 00 - ec 4f 0a 00 00 b0 fd 7f #...#....O...... 0155fdd4 90 73 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 .s...........!.w 0155fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 0155fdf4 fc ff 55 01 23 00 00 00 - 20 eb de bb 24 eb de bb ..U.#... ...$... 0155fe04 db 0d 43 80 28 c4 26 81 - e8 c3 26 81 f0 ec de bb ..C.(.&...&..... 0155fe14 92 51 42 80 00 00 00 00 - c8 18 2d 81 00 00 00 00 .QB.......-..... 0155fe24 00 00 00 00 48 eb de bb - 03 53 06 80 00 00 00 00 ....H....S...... 0155fe34 00 00 00 00 48 eb de bb - 00 00 00 00 80 31 01 c0 ....H........1.. 0155fe44 a1 f3 40 80 01 00 00 00 - 4c 00 30 c0 01 02 04 00 ..@.....L.0..... 0155fe54 00 00 00 00 60 eb de bb - 60 eb de bb 74 00 76 00 ....`...`...t.v. 线程 ID 0x590 的状态转储 eax=c1019f77 ebx=00000000 ecx=00000001 edx=00000000 esi=77f8377b edi=00000148 eip=77f83786 esp=01acda4c ebp=01acda70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0262b01f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01ACDA70 77E67837 00000148 FFFFFFFF 00000000 76BC164A ntdll!NtWaitForSingleObject 01ACDAB0 76BD301B 01ACDB08 00000000 01A3171C 01ACDAF4 kernel32!WaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A wininet!UnlockUrlCacheEntryFile 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01acda4c 0f 78 e6 77 48 01 00 00 - 00 00 00 00 00 00 00 00 .x.wH........... 01acda5c a8 da ac 01 a8 74 08 00 - 3c 31 f8 77 a8 74 08 00 .....t..<1.w.t.. 01acda6c a8 74 08 00 b0 da ac 01 - 37 78 e6 77 48 01 00 00 .t......7x.wH... 01acda7c ff ff ff ff 00 00 00 00 - 4a 16 bc 76 48 01 00 00 ........J..vH... 01acda8c ff ff ff ff a8 74 08 00 - a8 74 08 00 4c 30 bd 76 .....t...t..L0.v 01acda9c a8 da ac 01 a8 74 08 00 - d8 10 c2 76 00 00 00 00 .....t.....v.... 01acdaac a8 74 08 00 6d 31 f8 77 - 1b 30 bd 76 08 db ac 01 .t..m1.w.0.v.... 01acdabc 00 00 00 00 1c 17 a3 01 - f4 da ac 01 01 00 00 00 ................ 01acdacc 02 00 00 00 05 f6 c0 76 - 08 db ac 01 08 db ac 01 .......v........ 01acdadc 4a 00 00 00 00 00 00 00 - 00 02 00 00 01 00 00 00 J............... 01acdaec 00 00 00 00 80 27 e7 03 - 6c db ac 01 f8 02 c1 76 .....'..l......v 01acdafc 08 db ac 01 00 00 00 00 - 1c 17 a3 01 68 74 74 70 ............http 01acdb0c 3a 2f 2f 69 6d 61 67 65 - 32 2e 73 69 6e 61 2e 63 ://image2.sina.c 01acdb1c 6f 6d 2e 63 6e 2f 68 6f - 6d 65 2f 63 2e 67 69 66 om.cn/home/c.gif 01acdb2c 00 00 00 00 24 db ac 01 - 00 00 00 00 dc ff ac 01 ....$........... 01acdb3c 56 18 e8 77 18 81 e6 77 - ff ff ff ff 6c db ac 01 V..w...w....l... 01acdb4c dc ff ac 01 ac 02 c1 76 - 00 00 00 00 1c 17 a3 01 .......v........ 01acdb5c f0 16 a3 01 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01acdb6c a0 dd ac 01 f7 84 bd 75 - 84 17 a3 01 00 00 00 00 .......u........ 01acdb7c 1c 17 a3 01 68 5c c4 75 - 84 17 a3 01 00 00 00 00 ....h\.u........ 线程 ID 0x5a8 的状态转储 eax=000000c0 ebx=0000003f ecx=01ffef50 edx=00000000 esi=01ffec00 edi=00000001 eip=77f837b2 esp=01ffebe8 ebp=01ffffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02b5c1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01FFFFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 01FFFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01ffebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec ff 01 01 00 00 00 ...w............ 01ffebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 01ffec08 54 03 00 00 a8 05 00 00 - 0f 00 00 00 0f 00 00 00 T............... 01ffec18 58 03 00 00 28 03 00 00 - a4 03 00 00 b4 03 00 00 X...(........... 01ffec28 c8 03 00 00 e8 03 00 00 - f8 03 00 00 0c 04 00 00 ................ 01ffec38 28 04 00 00 40 04 00 00 - 50 04 00 00 64 04 00 00 (...@...P...d... 01ffec48 78 04 00 00 90 04 00 00 - a0 04 00 00 00 00 00 00 x............... 01ffec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffeca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ffed18 00 00 00 00 c8 cf 0d 00 - b8 d1 10 00 e0 d3 10 00 ................ 线程 ID 0x314 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=0203ff20 ebp=0203ff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02b9d4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0203FF6C 77E6A31D 0203FF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects *----> 原始堆栈转储 <----* 0203ff20 b7 7a e6 77 03 00 00 00 - 44 ff 03 02 01 00 00 00 .z.w....D....... 0203ff30 00 00 00 00 00 00 00 00 - b0 00 c4 77 00 00 00 00 ...........w.... 0203ff40 f6 76 e6 77 cc 03 00 00 - d0 03 00 00 10 04 00 00 .v.w............ 0203ff50 00 00 00 00 00 00 00 00 - b0 36 07 00 16 00 18 00 .........6...... 0203ff60 24 ed bf 77 00 00 00 00 - 08 ff 03 02 00 00 00 00 $..w............ 0203ff70 1d a3 e6 77 44 ff 03 02 - 01 00 00 00 00 00 00 00 ...wD........... 0203ff80 00 00 00 00 00 00 00 00 - 2c ec bf 77 03 00 00 00 ........,..w.... 0203ff90 4c 01 c4 77 00 00 00 00 - ff ff ff ff 50 be 06 00 L..w........P... 0203ffa0 e6 7e f8 77 ec ff 03 02 - 00 00 00 00 00 00 00 00 .~.w............ 0203ffb0 03 00 00 00 00 00 bf 77 - dd 87 e6 77 00 00 00 00 .......w...w.... 0203ffc0 50 be 06 00 e6 7e f8 77 - 00 00 00 00 00 30 fd 7f P....~.w.....0.. 0203ffd0 00 00 00 00 c0 ff 03 02 - 00 00 00 00 ff ff ff ff ................ 0203ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 0203fff0 00 00 00 00 a0 eb bf 77 - 00 00 00 00 00 00 00 00 .......w........ 02040000 08 00 00 00 01 01 00 00 - ee ff ee ff 00 00 00 00 ................ 02040010 00 00 b6 00 00 90 0a 00 - 00 00 04 02 00 01 00 00 ................ 02040020 40 00 04 02 00 00 14 02 - af 00 00 00 05 00 00 00 @............... 02040030 98 05 b6 00 00 00 00 00 - c0 de 08 02 00 00 00 00 ................ 02040040 49 00 08 00 01 01 08 00 - 00 00 00 00 6e 00 63 00 I...........n.c. 02040050 74 00 69 00 6f 00 6e 00 - 20 00 61 00 6e 00 6f 00 t.i.o.n. .a.n.o. 线程 ID 0x600 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0249ff24 ebp=0249ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02ffd4f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0249FF70 77E6A31D 0249FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0249FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0249FFEC 00000000 77522BDA 00000000 00000000 00000008 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0249ff24 b7 7a e6 77 02 00 00 00 - 48 ff 49 02 01 00 00 00 .z.w....H.I..... 0249ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0249ff44 00 00 00 00 30 05 00 00 - 2c 05 00 00 60 ea 11 81 ....0...,...`... 0249ff54 00 e9 11 81 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0249ff64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff 49 02 ..............I. 0249ff74 1d a3 e6 77 48 ff 49 02 - 01 00 00 00 00 00 00 00 ...wH.I......... 0249ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0249ff94 a4 ff 49 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..I............. 0249ffa4 30 05 00 00 2c 05 00 00 - 00 00 00 00 00 00 00 00 0...,........... 0249ffb4 ec ff 49 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..I....w........ 0249ffc4 00 00 00 00 00 00 00 00 - 00 f0 f9 7f 45 00 00 00 ............E... 0249ffd4 c0 ff 49 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ..I.E.......V..w 0249ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0249fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 08 00 00 00 .+Rw............ 024a0004 01 01 00 00 ee ff ee ff - 00 00 00 00 00 00 07 00 ................ 024a0014 00 00 00 00 00 00 4a 02 - 00 01 00 00 40 00 4a 02 ......J.....@.J. 024a0024 00 00 5a 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ..Z............. 024a0034 00 00 00 00 40 00 4a 02 - 00 00 00 00 01 01 08 00 ....@.J......... 024a0044 01 01 08 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 024a0054 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x518 的状态转储 eax=000000d4 ebx=00000000 ecx=00000019 edx=00000000 esi=77f8377b edi=00000134 eip=77f83786 esp=0262f940 ebp=0262f964 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0318cf13=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0262F964 77E67837 00000134 FFFFFFFF 00000000 76BCD26D ntdll!NtWaitForSingleObject 0262FEF4 76BCD1D5 00000000 0001000A 03D71060 03E42278 kernel32!WaitForSingleObject 0262FF2C 76BCD19D 024C1AF8 00000000 024BB988 03E42278 wininet!IncrementUrlCacheHeaderData 0262FF84 77C59013 00000000 01ACCF6C 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 0262FFAC 77C58F85 76BD1253 77E687DD 00000000 01ACCF6C shlwapi!Ordinal394 0262FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0262f940 0f 78 e6 77 34 01 00 00 - 00 00 00 00 00 00 00 00 .x.w4........... 0262f950 42 47 df 77 00 00 00 00 - 01 00 00 00 00 e0 f9 7f BG.w............ 0262f960 00 e0 f9 7f f4 fe 62 02 - 37 78 e6 77 34 01 00 00 ......b.7x.w4... 0262f970 ff ff ff ff 00 00 00 00 - 6d d2 bc 76 34 01 00 00 ........m..v4... 0262f980 ff ff ff ff 60 10 d7 03 - 01 00 00 00 00 00 00 00 ....`........... 0262f990 00 00 00 00 60 6a a2 01 - 85 ef ab 75 01 00 00 00 ....`j.....u.... 0262f9a0 60 6a a2 01 c3 e5 aa 75 - 6c 6a a2 01 00 00 00 00 `j.....ulj...... 0262f9b0 60 6a a2 01 85 ef ab 75 - e4 a6 23 05 60 6a a2 01 `j.....u..#.`j.. 0262f9c0 c3 e5 aa 75 6c 6a a2 01 - e4 a6 23 05 60 6a a2 01 ...ulj....#.`j.. 0262f9d0 93 a5 af 75 48 a5 23 05 - b2 a7 59 76 98 6a a2 01 ...uH.#...Yv.j.. 0262f9e0 00 00 00 00 00 00 00 00 - 00 00 00 00 1e 8a 59 76 ..............Yv 0262f9f0 e4 a6 23 05 00 00 00 00 - 00 00 00 00 00 00 00 00 ..#............. 0262fa00 00 00 00 00 48 a5 23 05 - 01 00 00 00 00 00 00 00 ....H.#......... 0262fa10 48 fa 62 02 0a 03 5b 76 - e4 a6 23 05 91 74 59 76 H.b...[v..#..tYv 0262fa20 74 a5 23 05 00 00 00 00 - 48 a5 23 05 01 00 00 00 t.#.....H.#..... 0262fa30 8f a7 59 76 48 a5 23 05 - 01 00 00 00 f8 c9 33 08 ..YvH.#.......3. 0262fa40 00 00 00 00 00 00 00 00 - 74 fa 62 02 d6 df 59 76 ........t.b...Yv 0262fa50 48 a5 23 05 00 00 00 00 - 00 00 00 00 10 50 c8 75 H.#..........P.u 0262fa60 0f 2d a9 75 40 88 95 01 - 23 2d a9 75 10 50 c8 75 .-.u@...#-.u.P.u 0262fa70 0c 00 00 00 01 00 00 00 - 58 50 c8 75 b2 39 df 77 ........XP.u.9.w 线程 ID 0x524 的状态转储 eax=0b030fb0 ebx=0266ff74 ecx=05299d98 edx=00000000 esi=77f8377b edi=000005c8 eip=77f83786 esp=0266ff58 ebp=0266ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:031cd52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0266FF7C 77E67837 000005C8 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x33c 的状态转储 eax=0000001d ebx=0277ff70 ecx=7ff9c000 edx=00000000 esi=77f8377b edi=000005dc eip=77f83786 esp=0277ff54 ebp=0277ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:032dd527=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0277FF78 77E67837 000005DC 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x5ec 的状态转储 eax=0007c684 ebx=00050003 ecx=0007e1f8 edx=00000000 esi=0007e1f8 edi=00000100 eip=77f83bb8 esp=03cdfe28 ebp=03cdff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0483d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03CDFF74 787020D9 787025B9 0007E1F8 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 03CDFFA8 787024DA 0007C068 03CDFFEC 77E687DD 000B26E8 rpcrt4!NdrConformantArrayMemorySize 03CDFFB4 77E687DD 000B26E8 00000000 00000000 000B26E8 rpcrt4!NdrConformantArrayMemorySize 03CDFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x624 的状态转储 eax=0007c684 ebx=00050003 ecx=0007e1f8 edx=00000000 esi=0007e1f8 edi=00000100 eip=77f83bb8 esp=0428fe28 ebp=0428ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:04ded3fb=ffffff00 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0428FF74 787020D9 78702528 0007E1F8 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0428FFA8 787024DA 0258A318 0428FFEC 77E687DD 02589060 rpcrt4!NdrConformantArrayMemorySize 0428FFB4 77E687DD 02589060 00000000 00000000 02589060 rpcrt4!NdrConformantArrayMemorySize 0428FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x644 的状态转储 eax=00000021 ebx=00000102 ecx=786f1f70 edx=00000000 esi=77f8318c edi=0470ff74 eip=77f83197 esp=0470ff60 ebp=0470ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0526d533=2e003100 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0470FF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x60c 的状态转储 eax=03d614e8 ebx=0012cb30 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=047cff84 ebp=047cffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:0532d557=a6dbc7a6 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:0532d557=a6dbc7a6 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:0532d557=a6dbc7a6 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:0532d557=a6dbc7a6 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 047CFFB4 77E687DD 74F55F4B 7FF9E000 00000000 0012CB30 ntdll!ZwRemoveIoCompletion 047CFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x62c 的状态转储 eax=00002733 ebx=00000000 ecx=00002733 edx=00000000 esi=77f8377b edi=00000134 eip=77f83786 esp=04b2f940 ebp=04b2f964 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0568cf13=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04B2F964 77E67837 00000134 FFFFFFFF 00000000 76BCD26D ntdll!NtWaitForSingleObject 04B2FEF4 76BCD1D5 00000000 0001000A 000C2110 03EE13C0 kernel32!WaitForSingleObject 04B2FF2C 76BCD19D 0523DAF0 00000000 0257A868 03EE13C0 wininet!IncrementUrlCacheHeaderData 04B2FF84 77C59013 00000000 00000000 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 04B2FFAC 77C58F85 00000000 77E687DD 00000000 00000000 shlwapi!Ordinal394 04B2FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 04b2f940 0f 78 e6 77 34 01 00 00 - 00 00 00 00 00 00 00 00 .x.w4........... 04b2f950 42 47 df 77 00 00 00 00 - 01 00 00 00 00 d0 fd 7f BG.w............ 04b2f960 00 d0 fd 7f f4 fe b2 04 - 37 78 e6 77 34 01 00 00 ........7x.w4... 04b2f970 ff ff ff ff 00 00 00 00 - 6d d2 bc 76 34 01 00 00 ........m..v4... 04b2f980 ff ff ff ff 10 21 0c 00 - 01 00 00 00 00 00 00 00 .....!.......... 04b2f990 b0 aa 1d 05 2e 34 25 08 - ca 07 00 00 e8 fa b2 04 .....4%......... 04b2f9a0 29 dd 59 76 08 00 00 00 - 00 00 00 00 00 08 00 00 ).Yv............ 04b2f9b0 d0 cf 11 e0 a1 b1 1a e1 - 08 fb b2 04 44 8e 59 76 ............D.Yv 04b2f9c0 cd 8f 59 76 f4 67 e9 03 - 00 00 00 00 e4 67 e9 03 ..Yv.g.......g.. 04b2f9d0 00 00 00 00 75 00 00 00 - 20 79 08 00 00 00 00 00 ....u... y...... 04b2f9e0 62 00 00 00 90 f7 b2 04 - 01 00 00 00 00 00 00 00 b............... 04b2f9f0 b8 39 f8 77 01 00 00 00 - 04 00 00 00 0a 00 00 00 .9.w............ 04b2fa00 38 fb b2 04 5a 34 be 76 - 98 e7 18 05 28 fa b2 04 8...Z4.v....(... 04b2fa10 c8 fb b2 04 00 ff b2 04 - 60 df 2c 05 3c 31 f8 77 ........`.,.<1.w 04b2fa20 00 00 00 00 08 6b 0c 05 - e8 16 c2 76 e8 16 c2 76 .....k.....v...v 04b2fa30 00 00 00 00 00 00 00 00 - 88 f1 08 00 68 a8 57 02 ............h.W. 04b2fa40 00 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04b2fa50 38 fa b2 04 08 6b 0c 05 - dc ff b2 04 14 d7 c1 76 8....k.........v 04b2fa60 a1 96 bc 76 50 6b 0c 05 - 9c fa b2 04 0a 00 00 00 ...vPk.......... 04b2fa70 70 39 f8 77 00 00 07 00 - 68 08 07 00 0a 00 00 00 p9.w....h....... 线程 ID 0x54c 的状态转储 eax=00000012 ebx=00000800 ecx=03d57190 edx=00000000 esi=04b6ff98 edi=77df7c12 eip=77df1d6b esp=04b6ff58 ebp=04b6ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:056cd52b=00000000 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:056cd52b=00000000 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:056cd52b=00000000 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04B6FF78 77535C36 04B6FF98 00000000 00000000 00000000 user32!TranslateMessageEx 04B6FFB4 77E687DD 00000800 77555428 0006929C 00000800 winmm!midiOutGetNumDevs 04B6FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x638 的状态转储 eax=00000000 ebx=00000000 ecx=03d631c0 edx=00000000 esi=77f8377b edi=00000148 eip=77f83786 esp=04baf794 ebp=04baf7b8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0570cd67=a8ec8e89 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04BAF7B8 77E67837 00000148 FFFFFFFF 00000000 76BC164A ntdll!NtWaitForSingleObject 04BAF7F0 76BC503B 00000000 04BAF818 76BC5028 00000000 kernel32!WaitForSingleObject 04BAF81C 76BCD448 77DF4742 00000000 00000001 765D9675 wininet!InternetQueryOptionA 04BAF970 76BCD2BB 00000000 00000000 00000001 05054DB0 wininet!InternetAutodial 04BAFEF4 76BCD1D5 00000000 0001000A 05054DB0 03EFF698 wininet!InternetAutodial 04BAFF2C 76BCD19D 03E627D0 00000000 0251BF90 03EFF698 wininet!IncrementUrlCacheHeaderData 04BAFF84 77C59013 00000000 01ACCF6C 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 04BAFFAC 77C58F85 76BD1253 77E687DD 00000000 01ACCF6C shlwapi!Ordinal394 04BAFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 04baf794 0f 78 e6 77 48 01 00 00 - 00 00 00 00 00 00 00 00 .x.wH........... 04baf7a4 ec f7 ba 04 a8 74 08 00 - 00 00 00 00 a8 74 08 00 .....t.......t.. 04baf7b4 a8 74 08 00 f0 f7 ba 04 - 37 78 e6 77 48 01 00 00 .t......7x.wH... 04baf7c4 ff ff ff ff 00 00 00 00 - 4a 16 bc 76 48 01 00 00 ........J..vH... 04baf7d4 ff ff ff ff 42 47 df 77 - a8 74 08 00 16 17 bc 76 ....BG.w.t.....v 04baf7e4 ec f7 ba 04 00 00 00 00 - 00 00 00 00 1c f8 ba 04 ................ 04baf7f4 3b 50 bc 76 00 00 00 00 - 18 f8 ba 04 28 50 bc 76 ;P.v........(P.v 04baf804 00 00 00 00 18 f8 ba 04 - d7 4f bc 76 18 f8 ba 04 .........O.v.... 04baf814 00 00 00 00 01 00 00 00 - 70 f9 ba 04 48 d4 bc 76 ........p...H..v 04baf824 42 47 df 77 00 00 00 00 - 01 00 00 00 75 96 5d 76 BG.w........u.]v 04baf834 a0 3c 59 76 fa a5 59 76 - 58 ed 4f 02 00 00 00 00 . 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04BEF964 77E67837 00000134 FFFFFFFF 00000000 76BCD26D ntdll!NtWaitForSingleObject 04BEFEF4 76BCD1D5 00000000 0001000A 024A1A00 052D5F30 kernel32!WaitForSingleObject 04BEFF2C 76BCD19D 05184D60 00000000 0258C268 052D5F30 wininet!IncrementUrlCacheHeaderData 04BEFF84 77C59013 00000000 01ACCF6C 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 04BEFFAC 77C58F85 76BD1253 77E687DD 00000000 01ACCF6C shlwapi!Ordinal394 04BEFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 04bef940 0f 78 e6 77 34 01 00 00 - 00 00 00 00 00 00 00 00 .x.w4........... 04bef950 42 47 df 77 00 00 00 00 - 01 00 00 00 00 a0 f9 7f BG.w............ 04bef960 00 a0 f9 7f f4 fe be 04 - 37 78 e6 77 34 01 00 00 ........7x.w4... 04bef970 ff ff ff ff 00 00 00 00 - 6d d2 bc 76 34 01 00 00 ........m..v4... 04bef980 ff ff ff ff 00 1a 4a 02 - 01 00 00 00 00 00 00 00 ......J......... 04bef990 00 00 00 00 00 00 00 00 - d0 f9 be 04 91 5a be 76 .............Z.v 04bef9a0 e5 03 00 00 f8 c9 33 08 - 74 cb 33 08 00 00 00 00 ......3.t.3..... 04bef9b0 01 00 00 00 01 00 00 00 - f8 c9 33 08 00 00 00 00 ..........3..... 04bef9c0 00 00 00 00 48 52 65 71 - 00 00 00 00 b0 4d 05 05 ....HReq.....M.. 04bef9d0 f4 f9 be 04 30 ea 59 76 - 4f 16 00 00 74 cb 33 08 ....0.YvO...t.3. 04bef9e0 08 00 00 00 87 2f 5b 76 - 54 fa be 04 00 00 00 00 ...../[vT....... 04bef9f0 e0 a6 23 05 08 fa be 04 - 65 dd 59 76 fd 4f 29 05 ..#.....e.Yv.O). 04befa00 4f 16 00 00 54 fa be 04 - 5c fa be 04 45 dd 59 76 O...T...\...E.Yv 04befa10 f8 c9 33 08 fd 4f 29 05 - 4f 16 00 00 54 fa be 04 ..3..O).O...T... 04befa20 29 dd 59 76 b8 18 57 02 - fd 4f 29 05 4f 16 00 00 ).Yv..W..O).O... 04befa30 54 fa be 04 2d 95 59 76 - 13 00 00 00 30 32 07 00 T...-.Yv....02.. 04befa40 b4 fa be 04 70 fa be 04 - 18 90 e6 77 30 32 07 00 ....p......w02.. 04befa50 b4 fa be 04 00 00 00 00 - b4 fa be 04 13 00 00 00 ................ 04befa60 e6 1d fd 7f 13 00 00 00 - 9c fa be 04 0a 00 00 00 ................ 04befa70 70 39 f8 77 00 00 07 00 - 68 08 07 00 0a 00 00 00 p9.w....h....... 线程 ID 0x190 的状态转储 eax=03d520ac ebx=00000000 ecx=0835a834 edx=00000000 esi=77f8377b edi=00000134 eip=77f83786 esp=04c2f940 ebp=04c2f964 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0578cf13=00000000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04C2F964 77E67837 00000134 FFFFFFFF 00000000 76BCD26D ntdll!NtWaitForSingleObject 04C2FEF4 76BCD1D5 00000000 0001000A 052F2948 02585AC8 kernel32!WaitForSingleObject 04C2FF2C 76BCD19D 051BC490 00000000 024F9DF0 02585AC8 wininet!IncrementUrlCacheHeaderData 04C2FF84 77C59013 00000000 01ACCF6C 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 04C2FFAC 77C58F85 76BD1253 77E687DD 00000000 01ACCF6C shlwapi!Ordinal394 04C2FFEC 00000000 77C58F5C 00000000 00000000 000000C8 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 04c2f940 0f 78 e6 77 34 01 00 00 - 00 00 00 00 00 00 00 00 .x.w4........... 04c2f950 42 47 df 77 00 00 00 00 - 01 00 00 00 00 90 f9 7f BG.w............ 04c2f960 00 90 f9 7f f4 fe c2 04 - 37 78 e6 77 34 01 00 00 ........7x.w4... 04c2f970 ff ff ff ff 00 00 00 00 - 6d d2 bc 76 34 01 00 00 ........m..v4... 04c2f980 ff ff ff ff 48 29 2f 05 - 01 00 00 00 00 00 00 00 ....H)/......... 04c2f990 20 08 24 05 65 d8 2f 05 - ab 07 00 00 e8 fa c2 04 .$.e./......... 04c2f9a0 29 dd 59 76 08 00 00 00 - 00 00 00 00 00 08 00 00 ).Yv............ 04c2f9b0 d0 cf 11 e0 a1 b1 1a e1 - 08 fb c2 04 44 8e 59 76 ............D.Yv 04c2f9c0 cd 8f 59 76 1c ac 25 05 - 00 00 00 00 0c ac 25 05 ..Yv..%.......%. 04c2f9d0 00 00 00 00 00 00 00 00 - 00 00 00 00 e0 b9 df 03 ................ 04c2f9e0 d0 f9 c2 04 80 1e 00 00 - 8c fb c2 04 95 2b f8 77 .............+.w 04c2f9f0 b8 39 f8 77 ff ff ff ff - 9c fb c2 04 27 b2 fc 77 .9.w........'..w 04c2fa00 d8 07 07 00 00 00 00 00 - 80 da 25 05 00 00 00 00 ..........%..... 04c2fa10 00 00 00 00 48 18 55 02 - ee d0 bc 76 48 18 55 02 ....H.U....vH.U. 04c2fa20 00 00 00 00 b8 da ef 03 - e8 16 c2 76 e8 16 c2 76 ...........v...v 04c2fa30 00 00 00 00 00 00 00 00 - 88 f1 08 00 f0 9d 4f 02 ..............O. 04c2fa40 00 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04c2fa50 38 fa c2 04 b8 da ef 03 - dc ff c2 04 14 d7 c1 76 8..............v 04c2fa60 a1 96 bc 76 00 db ef 03 - 9c fa c2 04 0a 00 00 00 ...v............ 04c2fa70 70 39 f8 77 00 00 07 00 - 68 08 07 00 0a 00 00 00 p9.w....h....... 线程 ID 0x48c 的状态转储 eax=02020e09 ebx=00000003 ecx=00000073 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=0995c698 ebp=0995c6e4 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0a4b9c6b=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0995C6E4 77DF2A00 0995C6BC 00000001 00000000 0995C6DC ntdll!NtWaitForMultipleObjects 0995C740 77DF2A77 0995C70C 0995C7A0 00007530 00000040 user32!MsgWaitForMultipleObjectsEx 0995C75C 76C9A156 00000002 0995C7A0 00000000 00007530 user32!MsgWaitForMultipleObjects 0995C7B4 76C9A7AC 00000F38 00000000 76C42000 0995D8A0 shdocvw!Ordinal223 0995C7D4 76C66517 00000005 76C42000 000A3830 08339A30 shdocvw!HlinkFrameNavigateNHL 0995C7F0 76C8182C 018D6D10 0995D8A0 10000000 00000000 shdocvw!Ordinal111 0995D8A8 76C4F9D1 02569718 00000000 00000000 01A2E390 shdocvw!Ordinal165 0995E9A0 76C5CBA6 00000002 02569718 01A2E390 018D6D10 shdocvw!Ordinal147 0995E9C8 75B1C0C2 08339A68 00000002 02569718 01A2E390 shdocvw!Ordinal210 0995EA10 75B1BBA1 0995EA74 0995EA60 08339A54 01A2E380 mshtml! 0995EA78 75C6CB26 018D6B00 018D6D10 018D6530 00000000 mshtml! 025997E8 00000014 000004BC 018D0D00 75AB1E50 025997E8 mshtml! *----> 原始堆栈转储 <----* 0995c698 b7 7a e6 77 03 00 00 00 - bc c6 95 09 01 00 00 00 .z.w............ 0995c6a8 00 00 00 00 dc c6 95 09 - 00 00 00 00 00 00 00 00 ................ 0995c6b8 03 00 00 00 34 0f 00 00 - 38 0f 00 00 38 0a 00 00 ....4...8...8... 0995c6c8 d0 ea 54 02 08 01 00 00 - a8 33 25 08 01 00 00 00 ..T......3%..... 0995c6d8 00 00 00 00 00 5d 1e ee - ff ff ff ff 40 c7 95 09 .....]......@... 0995c6e8 00 2a df 77 bc c6 95 09 - 01 00 00 00 00 00 00 00 .*.w............ 0995c6f8 dc c6 95 09 00 00 00 00 - 8e 76 e6 77 00 00 00 00 .........v.w.... 0995c708 a0 6f 28 08 34 0f 00 00 - 38 0f 00 00 38 0a 00 00 .o(.4...8...8... 0995c718 54 01 00 00 a4 6f 28 08 - a4 6f 28 08 28 ee 95 09 T....o(..o(.(... 0995c728 56 18 e8 77 78 b1 e6 77 - 00 00 00 00 cc 76 f9 7f V..wx..w.....v.. 0995c738 00 00 00 00 38 0a 00 00 - 5c c7 95 09 77 2a df 77 ....8...\...w*.w 0995c748 0c c7 95 09 a0 c7 95 09 - 30 75 00 00 40 00 00 00 ........0u..@... 0995c758 00 00 00 00 b4 c7 95 09 - 56 a1 c9 76 02 00 00 00 ........V..v.... 0995c768 a0 c7 95 09 00 00 00 00 - 30 75 00 00 40 00 00 00 ........0u..@... 0995c778 00 00 00 00 00 00 00 00 - a0 d8 95 09 00 00 00 00 ................ 0995c788 96 74 c4 76 34 38 0a 00 - 84 2e c5 77 30 38 0a 00 .t.v48.....w08.. 0995c798 00 00 00 00 54 01 04 80 - 34 0f 00 00 38 0f 00 00 ....T...4...8... 0995c7a8 54 01 00 00 30 38 0a 00 - b5 cd 8a 1e d4 c7 95 09 T...08.......... 0995c7b8 ac a7 c9 76 38 0f 00 00 - 00 00 00 00 00 20 c4 76 ...v8........ .v 0995c7c8 a0 d8 95 09 a0 d8 95 09 - 02 00 00 00 f0 c7 95 09 ................ 线程 ID 0x23c 的状态转储 eax=00000000 ebx=00000000 ecx=08f16b18 edx=00000000 esi=0254bbd0 edi=00000000 eip=77df2268 esp=0ae8ee64 ebp=0ae8eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0b9ec437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0AE8EEA8 76DF217C 00F002C0 0AE8FFA4 0833E300 00000000 user32!WaitMessage 0AE8EF30 76DF1F65 0833E300 00070718 00000000 0833E300 browseui!Ordinal102 0AE8FFAC 76C66950 0833E300 77E687DD 0833E300 00070718 browseui!Ordinal102 0AE8FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0ae8ee64 92 23 df 76 a4 ff e8 0a - 00 e3 33 08 00 00 00 00 .#.v......3..... 0ae8ee74 6c 06 52 00 13 01 00 00 - 44 20 00 00 00 00 00 00 l.R.....D ...... 0ae8ee84 32 ce 8a 1e b8 01 00 00 - 42 01 00 00 28 53 07 00 2.......B...(S.. 0ae8ee94 01 00 00 00 d0 bb 54 02 - 01 44 00 80 c0 1d e0 03 ......T..D...... 0ae8eea4 00 00 00 00 30 ef e8 0a - 7c 21 df 76 c0 02 f0 00 ....0...|!.v.... 0ae8eeb4 a4 ff e8 0a 00 e3 33 08 - 00 00 00 00 00 00 00 00 ......3......... 0ae8eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0ae8eed4 10 27 00 00 0f 78 e6 77 - 64 00 00 00 00 00 00 00 .'...x.wd....... 0ae8eee4 f4 ee e8 0a a4 ff e8 0a - 00 00 00 00 00 00 00 00 ................ 0ae8eef4 00 00 00 00 00 00 00 00 - 20 ef e8 0a 37 78 e6 77 ........ ...7x.w 0ae8ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0ae8ef14 ff 02 fa 77 b4 ee e8 0a - 78 dd 06 00 dc ff e8 0a ...w....x....... 0ae8ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff e8 0a Rz.vxi.v........ 0ae8ef34 65 1f df 76 00 e3 33 08 - 18 07 07 00 00 00 00 00 e..v..3......... 0ae8ef44 00 e3 33 08 00 00 00 00 - 00 00 00 00 00 00 00 00 ..3............. 0ae8ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0ae8ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0ae8ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0ae8ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0ae8ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x630 的状态转储 eax=00000000 ebx=00000000 ecx=08edd008 edx=00000000 esi=0011c138 edi=00000000 eip=77df2268 esp=0afeee64 ebp=0afeeea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0bb4c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0AFEEEA8 76DF217C 006A068C 0AFEFFA4 03EABF90 00000000 user32!WaitMessage 0AFEEF30 76DF1F65 03EABF90 00070718 00000000 03EABF90 browseui!Ordinal102 0AFEFFAC 76C66950 03EABF90 77E687DD 03EABF90 00070718 browseui!Ordinal102 0AFEFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0afeee64 92 23 df 76 a4 ff fe 0a - 90 bf ea 03 00 00 00 00 .#.v............ 0afeee74 7a 06 45 00 13 01 00 00 - 2e 16 00 00 00 00 00 00 z.E............. 0afeee84 32 ce 8a 1e b8 01 00 00 - 42 01 00 00 28 53 07 00 2.......B...(S.. 0afeee94 01 00 00 00 38 c1 11 00 - 01 44 00 80 68 9f 13 00 ....8....D..h... 0afeeea4 00 00 00 00 30 ef fe 0a - 7c 21 df 76 8c 06 6a 00 ....0...|!.v..j. 0afeeeb4 a4 ff fe 0a 90 bf ea 03 - 00 00 00 00 00 00 00 00 ................ 0afeeec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0afeeed4 10 27 00 00 0f 78 e6 77 - 64 00 00 00 00 00 00 00 .'...x.wd....... 0afeeee4 f4 ee fe 0a a4 ff fe 0a - 00 00 00 00 00 00 00 00 ................ 0afeeef4 00 00 00 00 00 00 00 00 - 20 ef fe 0a 37 78 e6 77 ........ ...7x.w 0afeef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0afeef14 ff 02 fa 77 b4 ee fe 0a - 78 dd 06 00 dc ff fe 0a ...w....x....... 0afeef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff fe 0a Rz.vxi.v........ 0afeef34 65 1f df 76 90 bf ea 03 - 18 07 07 00 00 00 00 00 e..v............ 0afeef44 90 bf ea 03 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0afeef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0afeef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0afeef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0afeef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0afeef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x5bc 的状态转储 eax=00000000 ebx=000cb220 ecx=0829dfe8 edx=00136160 esi=00000000 edi=0b10c394 eip=765bf9c8 esp=0b10c364 ebp=0b10c3ac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: CoInternetCompareUrl 765bf9ae 57 push edi 765bf9af 8d7de8 lea edi,[ebp+0xe8] ss:0bc6997e=???????? 765bf9b2 8b4b30 mov ecx,[ebx+0x30] ds:00c287f2=???????? 765bf9b5 57 push edi 765bf9b6 ff75f8 push dword ptr [ebp+0xf8] ss:0bc6997e=???????? 765bf9b9 8b433c mov eax,[ebx+0x3c] ds:00c287f2=???????? 765bf9bc 39734c cmp [ebx+0x4c],esi ds:00c287f2=???????? 765bf9bf 8975e8 mov [ebp+0xe8],esi ss:0bc6997e=???????? 765bf9c2 ff732c push dword ptr [ebx+0x2c] ds:00c287f2=???????? 765bf9c5 8975f0 mov [ebp+0xf0],esi ss:0bc6997e=???????? 错误 ->765bf9c8 8b10 mov edx,[eax] ds:00000000=???????? 765bf9ca 6800c00000 push 0xc000 765bf9cf 51 push ecx 765bf9d0 6802200000 push 0x2002 765bf9d5 56 push esi 765bf9d6 50 push eax 765bf9d7 0f84a7000000 je CoInternetCompareUrl+0x6be0 (765bfa84) 765bf9dd ff520c call dword ptr [edx+0xc] ds:00c93732=???????? 765bf9e0 3bc6 cmp eax,esi 765bf9e2 8945ec mov [ebp+0xec],eax ss:0bc6997e=???????? 765bf9e5 0f84a1000000 je CoInternetCompareUrl+0x6be8 (765bfa8c) 765bf9eb 8b4338 mov eax,[ebx+0x38] ds:00c287f2=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0B10C3AC 765BF923 052C77B1 00001A0B 0B10C400 00000000 urlmon!CoInternetCompareUrl 0B10C408 765994AF 001361D0 052C77B1 00001A0B 0B10C430 urlmon!CoInternetCompareUrl 0B10C438 7659A46B 00000000 052C77B1 00001A0B 0B10C45C urlmon!CopyStgMedium 0B10C464 7659A3C9 00000000 052C77B1 00001A0B 0B10C484 urlmon!FindMediaType 0B10C488 75AC4A75 0525A110 052C77B1 00001A0B 0B10C4D0 urlmon!FindMediaType 0B10C4AC 75AC4918 052C77B1 00001A0B 0B10C4D0 019EE640 mshtml! 0B10C4D4 75ABEFE7 75C88E28 019E7160 0B10C51C 00000000 mshtml! 00000000 00000000 00000000 00000000 00000000 00000000 mshtml! *----> 原始堆栈转储 <----* 0b10c364 a8 20 26 08 0e 11 00 00 - 94 c3 10 0b 9c c3 10 0b . &............. 0b10c374 00 00 00 00 00 c4 10 0b - 20 b2 0c 00 d0 61 13 00 ........ ....a.. 0b10c384 00 00 00 00 01 00 00 00 - 00 00 07 00 77 02 00 00 ............w... 0b10c394 00 00 00 00 00 00 00 00 - 00 00 00 00 00 6f ac 75 .............o.u 0b10c3a4 0e 11 00 00 00 00 00 00 - 08 c4 10 0b 23 f9 5b 76 ............#.[v 0b10c3b4 b1 77 2c 05 0b 1a 00 00 - 00 c4 10 0b 00 00 00 00 .w,............. 0b10c3c4 00 c4 10 0b 00 00 00 00 - 29 dd 59 76 20 b2 0c 00 ........).Yv ... 0b10c3d4 b1 77 2c 05 0b 1a 00 00 - 00 c4 10 0b 2d 95 59 76 .w,.........-.Yv 0b10c3e4 b0 25 d8 03 b1 77 2c 05 - 0b 1a 00 00 00 c4 10 0b .%...w,......... 0b10c3f4 b1 77 2c 05 40 af 59 76 - 48 60 13 00 00 00 00 00 .w,.@.YvH`...... 0b10c404 01 00 00 00 38 c4 10 0b - af 94 59 76 d0 61 13 00 ....8.....Yv.a.. 0b10c414 b1 77 2c 05 0b 1a 00 00 - 30 c4 10 0b 48 ae 59 76 .w,.....0...H.Yv 0b10c424 b1 77 2c 05 20 12 4f 02 - 78 61 13 00 00 00 00 00 .w,. .O.xa...... 0b10c434 01 00 00 00 64 c4 10 0b - 6b a4 59 76 00 00 00 00 ....d...k.Yv.... 0b10c444 b1 77 2c 05 0b 1a 00 00 - 5c c4 10 0b 00 00 00 00 .w,.....\....... 0b10c454 10 a1 25 05 d0 c4 10 0b - 00 00 00 00 01 00 00 00 ..%............. 0b10c464 88 c4 10 0b c9 a3 59 76 - 00 00 00 00 b1 77 2c 05 ......Yv.....w,. 0b10c474 0b 1a 00 00 84 c4 10 0b - 00 00 00 00 60 71 9e 01 ............`q.. 0b10c484 00 00 00 00 ac c4 10 0b - 75 4a ac 75 10 a1 25 05 ........uJ.u..%. 0b10c494 b1 77 2c 05 0b 1a 00 00 - d0 c4 10 0b 00 00 00 00 .w,............. 线程 ID 0x474 的状态转储 eax=77f8b1e0 ebx=00000000 ecx=00000002 edx=00000000 esi=0824b3c0 edi=00000000 eip=77df2268 esp=0b18ee64 ebp=0b18eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0bcec437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0B18EEA8 76DF217C 002306CA 0B18FFA4 0254EAD0 00000000 user32!WaitMessage 0B18EF30 76DF1F65 0254EAD0 00070718 00000000 0254EAD0 browseui!Ordinal102 0B18FFAC 76C66950 0254EAD0 77E687DD 0254EAD0 00070718 browseui!Ordinal102 0B18FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0b18ee64 92 23 df 76 a4 ff 18 0b - d0 ea 54 02 00 00 00 00 .#.v......T..... 0b18ee74 a4 07 50 00 13 01 00 00 - 2e 16 00 00 00 00 00 00 ..P............. 0b18ee84 22 ce 8a 1e b8 01 00 00 - 42 01 00 00 28 53 07 00 ".......B...(S.. 0b18ee94 01 00 00 00 c0 b3 24 08 - 01 44 00 80 20 be 0c 00 ......$..D.. ... 0b18eea4 00 00 00 00 30 ef 18 0b - 7c 21 df 76 ca 06 23 00 ....0...|!.v..#. 0b18eeb4 a4 ff 18 0b d0 ea 54 02 - 00 00 00 00 00 00 00 00 ......T......... 0b18eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0b18eed4 10 27 00 00 0f 78 e6 77 - 64 00 00 00 00 00 00 00 .'...x.wd....... 0b18eee4 f4 ee 18 0b a4 ff 18 0b - 00 00 00 00 00 00 00 00 ................ 0b18eef4 00 00 00 00 00 00 00 00 - 20 ef 18 0b 37 78 e6 77 ........ ...7x.w 0b18ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0b18ef14 ff 02 fa 77 b4 ee 18 0b - 78 dd 06 00 dc ff 18 0b ...w....x....... 0b18ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 18 0b Rz.vxi.v........ 0b18ef34 65 1f df 76 d0 ea 54 02 - 18 07 07 00 00 00 00 00 e..v..T......... 0b18ef44 d0 ea 54 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ..T............. 0b18ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b18ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b18ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b18ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b18ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1424) 时间: 2003-8-17 @ 15:12:00.203 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 176 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 448 spoolsv.exe 476 ccEvtMgr.exe 496 svchost.exe 564 navapsvc.exe 596 regsvc.exe 704 MSTask.exe 740 WinMgmt.exe 800 svchost.exe 964 Explorer.exe 1008 Rundll32.exe 1116 daemon.exe 1128 ccApp.exe 1188 RealPlay.exe 1204 internat.exe 1240 AcroTray.exe 1324 XDICT.exe 1380 RUNDLL32.exe 1388 RUNDLL32.exe 1144 wuauclt.exe 212 cthighway.exe 512 conime.exe 1348 NAVW32.exe 1424 iexplore.exe 660 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (012C0000 - 012C8000) (01310000 - 01320000) (01430000 - 0144C000) (01450000 - 01469000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (74F90000 - 74F97000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (770F0000 - 772ED000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (016C0000 - 016D7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01CA0000 - 01CBB000) (01DD0000 - 01DEE000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (021A0000 - 0232D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (68EF0000 - 68F0F000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (75CE0000 - 75CE6000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (6A900000 - 6A9EA000) (657F0000 - 65838000) (4AA00000 - 4AA15000) (6CC40000 - 6CC6C000) (6CDF0000 - 6CE56000) (6B080000 - 6B0A9000) (6CE80000 - 6CEAF000) (759D0000 - 75A3B000) (6AC80000 - 6ACBC000) 线程 ID 0x2f4 的状态转储 eax=00000001 ebx=017bbbc0 ecx=023447a0 edx=00000000 esi=017bbba0 edi=017bbba0 eip=77f837c0 esp=0006db9c ebp=0006dbcc iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwSetEvent 77f837b5 b8bf000000 mov eax,0xbf 77f837ba 8d542404 lea edx,[esp+0x4] ss:00bcb16f=???????? 77f837be cd2e int 2e 77f837c0 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DBCC 75BDA7B9 0177C2E0 017BBBC0 00000001 00000113 ntdll!ZwSetEvent 0006DC34 75BDA83A 01730260 75A91A52 017BBBC0 00000001 mshtml! 0006DC70 77DF1D0A 01E1013A 00000B9F 0000D5AD 00000000 mshtml! 0006DC90 77DF1BC8 75A918FC 01E1013A 00000113 0000D5AD user32!DispatchMessageW 0006DD1C 77DF1CEF 0006DD58 00000000 76DD4C9F 0006DD58 user32!GetAppCompatFlags2 0006DD58 00000113 0000D5AD 00000000 0A451624 0000015E user32!DispatchMessageW *----> 原始堆栈转储 <----* 0006db9c 9c 5c f8 77 34 06 00 00 - 00 00 00 00 01 00 00 00 .\.w4........... 0006dbac 7e 5c f8 77 a0 bb 7b 01 - 43 9f bd 75 a0 bb 7b 01 ~\.w..{.C..u..{. 0006dbbc e0 db 06 00 01 00 00 00 - 00 00 00 00 70 ba 7b 01 ............p.{. 0006dbcc 34 dc 06 00 b9 a7 bd 75 - e0 c2 77 01 c0 bb 7b 01 4......u..w...{. 0006dbdc 01 00 00 00 13 01 00 00 - c0 bb 7b 01 ad d5 00 00 ..........{..... 0006dbec 13 00 06 00 a8 a9 0b 00 - 24 16 45 0a f0 03 73 01 ........$.E...s. 0006dbfc 13 00 e6 77 70 dc 06 00 - f0 15 45 0a 90 cb 85 01 ...wp.....E..... 0006dc0c a0 cb 85 01 30 00 00 00 - ad d5 00 00 0f 91 aa 75 ....0..........u 0006dc1c 00 00 00 00 53 00 00 00 - ff ff ff ff 24 16 45 0a ....S.......$.E. 0006dc2c f0 15 45 0a 04 00 00 00 - 70 dc 06 00 3a a8 bd 75 ..E.....p...:..u 0006dc3c 60 02 73 01 52 1a a9 75 - c0 bb 7b 01 01 00 00 00 `.s.R..u..{..... 0006dc4c 6a 19 a9 75 3a 01 e1 01 - ad d5 00 00 58 dd 06 00 j..u:.......X... 0006dc5c 60 dd 06 00 00 00 00 c0 - 00 00 00 00 c0 dc 06 00 `............... 0006dc6c 00 00 00 00 90 dc 06 00 - 0a 1d df 77 3a 01 e1 01 ...........w:... 0006dc7c 9f 0b 00 00 ad d5 00 00 - 00 00 00 00 60 dd 06 00 ............`... 0006dc8c cd ab ba dc 1c dd 06 00 - c8 1b df 77 fc 18 a9 75 ...........w...u 0006dc9c 3a 01 e1 01 13 01 00 00 - ad d5 00 00 00 00 00 00 :............... 0006dcac 00 00 00 00 18 ac 07 00 - 00 04 00 00 fc 1f 00 10 ................ 0006dcbc 80 7c df 77 3a 01 e1 01 - 13 01 00 00 ad d5 00 00 .|.w:........... 0006dccc 00 00 00 00 24 16 45 0a - 5e 01 00 00 00 01 00 00 ....$.E.^....... 线程 ID 0x430 的状态转储 eax=00000000 ebx=ffffffff ecx=00000004 edx=00000000 esi=7fffffff edi=00000102 eip=77f83786 esp=0153facc ebp=0153fb04 iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0209d09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0153FB04 74F57EE6 000001E4 00000230 00000000 00000004 ntdll!NtWaitForSingleObject 0153FBF0 74FB1DA9 00000003 0153FE84 0153FC7C 0153FD80 msafd!WSPSetSockOpt 0153FC54 76BD6F2E 00000003 0153FE84 0153FC7C 0153FD80 ws2_32!select 0153FFB0 76BD6E24 77E687DD 000A2F68 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0153FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0153facc d2 bc f5 74 e4 01 00 00 - 01 00 00 00 f0 fa 53 01 ...t..........S. 0153fadc 84 fe 53 01 c8 d8 0a 08 - b8 d8 0a 08 70 3e b7 d7 ..S.........p>.. 0153faec 8e 64 c3 01 ff ff ff ff - ff ff ff 7f 48 46 0a 00 .d..........HF.. 0153fafc 00 00 00 00 00 00 00 00 - f0 fb 53 01 e6 7e f5 74 ..........S..~.t 0153fb0c e4 01 00 00 30 02 00 00 - 00 00 00 00 04 00 00 00 ....0........... 0153fb1c 80 fd 53 01 78 5a 0a 00 - 7c fc 53 01 e0 3e aa ff ..S.xZ..|.S..>.. 0153fb2c ff ff ff ff 00 fc 91 4f - ff ff ff ff 30 02 00 00 .......O....0... 0153fb3c e4 01 00 00 00 00 00 00 - 00 00 00 00 90 fb 53 01 ..............S. 0153fb4c 17 20 01 00 80 fb 53 01 - 10 00 00 00 00 00 00 00 . ....S......... 0153fb5c 01 00 00 00 e0 3e aa ff - ff ff ff ff 00 00 00 00 .....>.......... 0153fb6c ff ff ff ff 01 00 00 00 - 48 46 0a 00 e4 01 00 00 ........HF...... 0153fb7c 01 00 00 00 24 fc 53 01 - 01 00 00 00 00 00 00 00 ....$.S......... 0153fb8c 20 00 00 00 00 00 00 00 - 01 00 00 00 00 00 00 00 ............... 0153fb9c ff ff ff ff 90 fb 53 01 - 00 00 00 00 00 00 00 00 ......S......... 0153fbac 48 46 0a 00 fc fb 53 01 - 02 00 00 00 b8 d8 0a 08 HF....S......... 0153fbbc 5c 00 00 00 05 00 00 00 - 00 00 00 00 00 00 00 00 \............... 0153fbcc 30 02 00 00 24 fc 53 01 - 04 d9 0a 08 1c fb 53 01 0...$.S.......S. 0153fbdc 24 fc 53 01 44 fc 53 01 - 36 df f5 74 78 30 f5 74 $.S.D.S.6..tx0.t 0153fbec ff ff ff ff 54 fc 53 01 - a9 1d fb 74 03 00 00 00 ....T.S....t.... 0153fbfc 84 fe 53 01 7c fc 53 01 - 80 fd 53 01 90 ff 53 01 ..S.|.S...S...S. 线程 ID 0x504 的状态转储 eax=00000003 ebx=00000004 ecx=00000101 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=015bfd24 ebp=015bfd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0211d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 015BFD70 77E6A31D 015BFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 015BFFB4 77E687DD 00000005 000A44AC 7FFDB000 000A6428 kernel32!WaitForMultipleObjects 015BFFEC 00000000 777F21FE 000A6428 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 015bfd24 b7 7a e6 77 04 00 00 00 - 48 fd 5b 01 01 00 00 00 .z.w....H.[..... 015bfd34 00 00 00 00 00 00 00 00 - 01 00 00 00 28 64 0a 00 ............(d.. 015bfd44 01 00 00 00 04 02 00 00 - 08 02 00 00 18 02 00 00 ................ 015bfd54 d8 02 00 00 48 2f 40 80 - ff ff ff ff d0 6a c4 bb ....H/@......j.. 015bfd64 14 02 00 00 11 00 00 00 - 02 00 00 00 b4 ff 5b 01 ..............[. 015bfd74 1d a3 e6 77 48 fd 5b 01 - 01 00 00 00 00 00 00 00 ...wH.[......... 015bfd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 015bfd94 b0 fe 5b 01 00 00 00 00 - ff ff ff ff 28 64 0a 00 ..[.........(d.. 015bfda4 00 b0 fd 7f ac 44 0a 00 - 45 c4 ef bf e8 1c 21 81 .....D..E.....!. 015bfdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 015bfdc4 23 00 00 00 23 00 00 00 - ac 44 0a 00 00 b0 fd 7f #...#....D...... 015bfdd4 28 64 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 (d...........!.w 015bfde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 015bfdf4 fc ff 5b 01 23 00 00 00 - c0 00 00 00 08 6f 48 86 ..[.#........oH. 015bfe04 df 5e 00 00 e8 14 96 81 - 00 07 00 00 ae cc 44 80 .^............D. 015bfe14 df 5e 00 00 e8 14 96 81 - df 5e 00 00 e8 14 96 81 .^.......^...... 015bfe24 01 a2 fd 7f 37 02 00 00 - 41 d6 44 80 37 02 00 00 ....7...A.D.7... 015bfe34 f0 06 20 81 00 a0 fd 7f - fc 07 30 c0 00 00 00 00 .. .......0..... 015bfe44 48 6b c4 bb 37 02 00 00 - 00 00 00 00 00 00 00 00 Hk..7........... 015bfe54 01 00 00 00 00 00 00 00 - 00 b0 fd 7f fc 07 30 c0 ..............0. 线程 ID 0x5b8 的状态转储 eax=0162fdc4 ebx=00050003 ecx=00080440 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0162fe28 ebp=0162ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0218d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0162FF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0162FFA8 787024DA 0007C0F8 0162FFEC 77E687DD 000B00E0 rpcrt4!NdrConformantArrayMemorySize 0162FFB4 77E687DD 000B00E0 00000000 00000000 000B00E0 rpcrt4!NdrConformantArrayMemorySize 0162FFEC 00000000 787024C2 000B00E0 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0162fe28 85 22 70 78 04 01 00 00 - 54 ff 62 01 00 00 00 00 ."px....T.b..... 0162fe38 18 1b 4c 02 58 ff 62 01 - 80 c0 07 00 08 8b 0a 00 ..L.X.b......... 0162fe48 6d 31 f8 77 00 00 00 00 - 00 00 00 00 00 00 00 00 m1.w............ 0162fe58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162fe68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162fe78 00 00 00 00 00 00 00 00 - 00 00 00 00 83 14 00 00 ................ 0162fe88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162fe98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162fea8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162feb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162fec8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162fed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162fee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162fef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162ff08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0162ff18 00 00 00 00 20 b0 30 81 - 20 50 27 81 20 b0 30 81 .... .0. P'. .0. 0162ff28 20 e0 0c 81 80 fc 0c 81 - 40 82 25 81 00 00 00 00 .......@.%..... 0162ff38 40 82 25 81 d0 83 25 81 - 64 6c 61 bc f3 da 42 80 @.%...%.dla...B. 0162ff48 a4 da 42 80 d4 4b 06 80 - a0 83 25 81 03 00 05 00 ..B..K....%..... 0162ff58 00 a2 2f 4d ff ff ff ff - 50 fe 62 01 00 00 02 80 ../M....P.b..... 线程 ID 0x5b0 的状态转储 eax=0361e804 ebx=00000102 ecx=0007c298 edx=00000000 esi=77f8318c edi=0167ff74 eip=77f83197 esp=0167ff60 ebp=0167ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:021dd533=6a207e2c 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0167FF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x354 的状态转储 eax=00000000 ebx=000c73a0 ecx=7ffd6000 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=0172ff84 ebp=0172ffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:0228d557=00000000 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:0228d557=00000000 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:0228d557=00000000 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:0228d557=00000000 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0172FFB4 77E687DD 74F55F4B 7FFDB000 00000000 000C73A0 ntdll!ZwRemoveIoCompletion 0172FFEC 00000000 74F54766 000C73A0 00000000 01730067 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0172ff84 b8 47 f5 74 e8 02 00 00 - bc ff 72 01 b0 ff 72 01 .G.t......r...r. 0172ff94 a4 ff 72 01 28 2c f5 74 - 00 b0 fd 7f 00 00 00 00 ..r.(,.t........ 0172ffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 d0 c1 be 04 ...........t.... 0172ffb4 ec ff 72 01 dd 87 e6 77 - 4b 5f f5 74 00 b0 fd 7f ..r....wK_.t.... 0172ffc4 00 00 00 00 a0 73 0c 00 - 00 60 fd 7f 64 f7 57 01 .....s...`..d.W. 0172ffd4 c0 ff 72 01 64 f7 57 01 - ff ff ff ff 56 18 e8 77 ..r.d.W.....V..w 0172ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0172fff4 66 47 f5 74 a0 73 0c 00 - 00 00 00 00 67 00 73 01 fG.t.s......g.s. 01730004 00 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01730014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01730024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01730034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01730044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 01 01 01 ................ 01730054 01 0a 00 00 00 00 00 00 - 00 00 00 01 02 00 03 00 ................ 01730064 00 02 00 01 01 01 06 00 - 00 00 00 00 06 00 00 00 ................ 01730074 00 00 01 02 00 03 00 00 - 01 0b 00 00 00 00 00 00 ................ 01730084 00 00 00 00 01 02 00 04 - 00 00 00 21 00 00 00 00 ...........!.... 01730094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 017300a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 017300b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x480 的状态转储 eax=02000000 ebx=01b8ff74 ecx=00000001 edx=00000000 esi=77f8377b edi=00000300 eip=77f83786 esp=01b8ff58 ebp=01b8ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:026ed52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01B8FF7C 77E67837 00000300 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01b8ff58 0f 78 e6 77 00 03 00 00 - 00 00 00 00 74 ff b8 01 .x.w........t... 01b8ff68 00 00 00 00 e0 1e 73 01 - 3c 31 f8 77 00 44 5f 9a ......s.<1.w.D_. 01b8ff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 00 03 00 00 ....m1.w7x.w.... 01b8ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 00 03 00 00 .'......k..u.... 01b8ff98 c0 27 09 00 88 b0 06 00 - e0 1e 73 01 ec ff b8 01 .'........s..... 01b8ffa8 e0 1e 73 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 ..s....u).Yvt..u 01b8ffb8 dd 87 e6 77 e0 1e 73 01 - 88 b0 06 00 29 dd 59 76 ...w..s.....).Yv 01b8ffc8 e0 1e 73 01 00 50 fd 7f - bd 1b 00 00 c0 ff b8 01 ..s..P.......... 01b8ffd8 bd 1b 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01b8ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01b8fff8 e0 1e 73 01 00 00 00 00 - 0d 00 b6 03 02 00 3f 00 ..s...........?. 01b90008 3f 00 3f 00 3f 00 81 fe - 00 00 00 00 00 00 00 00 ?.?.?........... 01b90018 00 00 03 80 00 00 01 00 - 02 00 03 00 04 00 05 00 ................ 01b90028 06 00 07 00 08 00 09 00 - 0a 00 0b 00 0c 00 0d 00 ................ 01b90038 0e 00 0f 00 10 00 11 00 - 12 00 13 00 14 00 15 00 ................ 01b90048 16 00 17 00 18 00 19 00 - 1a 00 1b 00 1c 00 1d 00 ................ 01b90058 1e 00 1f 00 20 00 21 00 - 22 00 23 00 24 00 25 00 .... .!.".#.$.%. 01b90068 26 00 27 00 28 00 29 00 - 2a 00 2b 00 2c 00 2d 00 &.'.(.).*.+.,.-. 01b90078 2e 00 2f 00 30 00 31 00 - 32 00 33 00 34 00 35 00 ../.0.1.2.3.4.5. 01b90088 36 00 37 00 38 00 39 00 - 3a 00 3b 00 3c 00 3d 00 6.7.8.9.:.;.<.=. 线程 ID 0x538 的状态转储 eax=000000c0 ebx=0000003f ecx=020bef50 edx=00000000 esi=020bec00 edi=00000001 eip=77f837b2 esp=020bebe8 ebp=020bffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02c1c1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 020BFFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 020BFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 020bebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 0b 02 01 00 00 00 ...w............ 020bebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 020bec08 60 03 00 00 38 05 00 00 - 0f 00 00 00 0f 00 00 00 `...8........... 020bec18 64 03 00 00 34 03 00 00 - b0 03 00 00 c0 03 00 00 d...4........... 020bec28 d4 03 00 00 f4 03 00 00 - 04 04 00 00 18 04 00 00 ................ 020bec38 30 04 00 00 48 04 00 00 - 58 04 00 00 6c 04 00 00 0...H...X...l... 020bec48 80 04 00 00 98 04 00 00 - a8 04 00 00 00 00 00 00 ................ 020bec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020bec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020bec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020bec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020bec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020beca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020becb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020becc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020becd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020bece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020becf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020bed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 020bed18 00 00 00 00 a0 c3 0d 00 - 80 c6 10 00 a8 c8 10 00 ................ 线程 ID 0x434 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=020fff20 ebp=020fff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02c5d4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 020FFF6C 77E6A31D 020FFF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x34c 的状态转储 eax=00000808 ebx=0213ff74 ecx=7ff9e000 edx=00000000 esi=77f8377b edi=000004c0 eip=77f83786 esp=0213ff58 ebp=0213ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02c9d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0213FF7C 77E67837 000004C0 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x39c 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=023fff24 ebp=023fff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f5d4f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023FFF70 77E6A31D 023FFF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 023FFFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 023FFFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 023fff24 b7 7a e6 77 02 00 00 00 - 48 ff 3f 02 01 00 00 00 .z.w....H.?..... 023fff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 023fff44 00 00 00 00 28 05 00 00 - 24 05 00 00 20 cb 22 81 ....(...$... .". 023fff54 c0 c9 22 81 06 b2 af 75 - 00 20 50 c0 70 a5 9e 81 .."....u. P.p... 023fff64 70 a5 9e 81 00 00 00 00 - 00 00 00 00 b4 ff 3f 02 p.............?. 023fff74 1d a3 e6 77 48 ff 3f 02 - 01 00 00 00 00 00 00 00 ...wH.?......... 023fff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 023fff94 a4 ff 3f 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..?............. 023fffa4 28 05 00 00 24 05 00 00 - 00 00 00 00 00 00 00 00 (...$........... 023fffb4 ec ff 3f 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..?....w........ 023fffc4 00 00 00 00 00 00 00 00 - 00 d0 f9 7f 45 00 00 00 ............E... 023fffd4 c0 ff 3f 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ..?.E.......V..w 023fffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 023ffff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02400004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02400014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02400024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02400034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02400044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02400054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x428 的状态转储 eax=0a45054c ebx=00000002 ecx=7ff9c000 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0296fe5c ebp=0296fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:034cd42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0296FEA8 77DF2A00 0296FE80 00000001 00000000 0296FEA0 ntdll!NtWaitForMultipleObjects 0296FF04 77DF2A77 0296FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0296FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0296FF74 77C58FFD 0296FFA0 0296FFA4 0296FFA8 0296FF9C shlwapi!Ordinal271 0296FFAC 77C58F85 77F82B95 77E687DD 00000000 0153FA10 shlwapi!Ordinal394 0296FFEC 00000000 77C58F5C 00000000 00000000 000000C8 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0296fe5c b7 7a e6 77 02 00 00 00 - 80 fe 96 02 01 00 00 00 .z.w............ 0296fe6c 00 00 00 00 a0 fe 96 02 - 00 00 00 00 00 00 00 00 ................ 0296fe7c 02 00 00 00 dc 01 00 00 - 94 05 00 00 a1 76 e6 77 .............v.w 0296fe8c 74 2f 0a 00 cc 7b 5b 03 - 01 00 00 00 7c fe 96 02 t/...{[.....|... 0296fe9c 36 27 00 00 00 ba 3c dc - ff ff ff ff 04 ff 96 02 6'....<......... 0296feac 00 2a df 77 80 fe 96 02 - 01 00 00 00 00 00 00 00 .*.w............ 0296febc a0 fe 96 02 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 0296fecc 00 00 00 00 dc 01 00 00 - 94 05 00 00 95 2b f8 77 .............+.w 0296fedc 18 36 f8 77 ff ff ff ff - 2c ff 96 02 82 73 e6 77 .6.w....,....s.w 0296feec 00 00 07 00 00 00 00 00 - 00 00 00 00 cc c6 f9 7f ................ 0296fefc 00 00 00 00 94 05 00 00 - 20 ff 96 02 77 2a df 77 ........ ...w*.w 0296ff0c d0 fe 96 02 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 0296ff1c 00 00 00 00 74 ff 96 02 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 0296ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0296ff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 a1 96 bc 76 .....A.wm1.w...v 0296ff4c 60 a8 29 08 f8 5c 12 00 - 00 00 00 00 82 96 bc 76 `.)..\.........v 0296ff5c 00 00 00 00 b4 d0 bc 76 - 4c 05 45 0a a0 41 c9 77 .......vL.E..A.w 0296ff6c 60 ea 00 00 01 00 00 00 - ac ff 96 02 fd 8f c5 77 `..............w 0296ff7c a0 ff 96 02 a4 ff 96 02 - a8 ff 96 02 9c ff 96 02 ................ 0296ff8c 60 ea 00 00 10 fa 53 01 - 00 00 c5 77 00 00 00 00 `.....S....w.... 线程 ID 0x388 的状态转储 eax=0a450c07 ebx=00000000 ecx=0177da60 edx=00000000 esi=77f8377b edi=00000304 eip=77f83786 esp=02e7ff54 ebp=02e7ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:039dd527=eeeeee00 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02E7FF78 77E67837 00000304 FFFFFFFF 00000000 75BDA104 ntdll!NtWaitForSingleObject FFFFFFFF 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 02e7ff54 0f 78 e6 77 04 03 00 00 - 00 00 00 00 00 00 00 00 .x.w............ 02e7ff64 18 7f d3 07 70 ba 7b 01 - 53 16 45 0a b0 6c a1 01 ....p.{.S.E..l.. 02e7ff74 b0 6c a1 01 ff ff ff ff - 37 78 e6 77 04 03 00 00 .l......7x.w.... 02e7ff84 ff ff ff ff 00 00 00 00 - 04 a1 bd 75 04 03 00 00 ...........u.... 02e7ff94 ff ff ff ff 70 ba 7b 01 - ec ff e7 02 5d 28 df 77 ....p.{.....](.w 02e7ffa4 70 ba 7b 01 00 00 00 00 - 9a f4 b2 75 60 01 4f 00 p.{........u`.O. 02e7ffb4 74 f4 b2 75 dd 87 e6 77 - 70 ba 7b 01 5d 28 df 77 t..u...wp.{.](.w 02e7ffc4 60 01 4f 00 70 ba 7b 01 - 00 b0 f9 7f 60 01 4f 00 `.O.p.{.....`.O. 02e7ffd4 c0 ff e7 02 60 01 4f 00 - ff ff ff ff 56 18 e8 77 ....`.O.....V..w 02e7ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02e7fff4 6b f4 b2 75 70 ba 7b 01 - 00 00 00 00 00 00 00 00 k..up.{......... 02e80004 9f 10 13 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ................ 02e80014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 02e80024 ff ff ff 00 00 00 00 00 - 00 00 00 00 a8 03 86 00 ................ 02e80034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 02e80044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 02e80054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02e80064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 02e80074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02e80084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x598 的状态转储 eax=00000012 ebx=0000064c ecx=1006bd00 edx=00000000 esi=0301ff98 edi=77df7c12 eip=77df1d6b esp=0301ff58 ebp=0301ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03b7d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03b7d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03b7d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0301FF78 77535C36 0301FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0301FFB4 77E687DD 0000064C 77555428 0006B26C 0000064C winmm!midiOutGetNumDevs 0301FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x5bc 的状态转储 eax=00000017 ebx=00000002 ecx=0829ba2c edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0731fe5c ebp=0731fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:07e7d42f=01020003 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0731FEA8 77DF2A00 0731FE80 00000001 00000000 0731FEA0 ntdll!NtWaitForMultipleObjects 0731FF04 77DF2A77 0731FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0731FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0731FF74 77C58FFD 0731FFA0 0731FFA4 0731FFA8 0731FF9C shlwapi!Ordinal271 0731FFAC 77C58F85 76BD1253 77E687DD 00000000 01B8CF6C shlwapi!Ordinal394 0731FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x4a8 的状态转储 eax=00000000 ebx=00050003 ecx=7ffd7000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0764fe28 ebp=0764ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:081ad3fb=00000000 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0764FF74 787020D9 78702528 0007E288 0162FA9C 00000022 ntdll!NtReplyWaitReceivePortEx 0764FFA8 787024DA 04B34C70 0764FFEC 77E687DD 04B2D4B0 rpcrt4!NdrConformantArrayMemorySize 0764FFB4 77E687DD 04B2D4B0 0162FA9C 00000022 04B2D4B0 rpcrt4!NdrConformantArrayMemorySize 0764FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x528 的状态转储 eax=00000000 ebx=00000000 ecx=00000004 edx=00000000 esi=08c3ff94 edi=77df7c12 eip=77df1d6b esp=08c3ff50 ebp=08c3ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0979d523=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0979d523=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0979d523=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 08C3FF70 6A92E75C 08C3FF94 00000000 00000000 00000000 user32!TranslateMessageEx 08C3FFB4 77E687DD 00000AC0 0834A127 08349FE8 00000AC0 msjava!DllGetClassObject 08C3FFEC 00000000 6A92E6D6 00000AC0 00000000 6F6F6F6F kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 08c3ff50 4e 7c df 77 94 ff c3 08 - 00 00 00 00 00 00 00 00 N|.w............ 08c3ff60 00 00 00 00 00 00 00 00 - a0 54 4f 08 12 7c df 77 .........TO..|.w 08c3ff70 b4 ff c3 08 5c e7 92 6a - 94 ff c3 08 00 00 00 00 ....\..j........ 08c3ff80 00 00 00 00 00 00 00 00 - 27 a1 34 08 e8 9f 34 08 ........'.4...4. 08c3ff90 c0 0a 00 00 a2 05 4a 00 - 39 04 00 00 00 00 00 00 ......J.9....... 08c3ffa0 00 00 00 00 d0 a4 40 0a - e0 01 00 00 ca 01 00 00 ......@......... 08c3ffb0 a0 54 4f 08 ec ff c3 08 - dd 87 e6 77 c0 0a 00 00 .TO........w.... 08c3ffc0 27 a1 34 08 e8 9f 34 08 - c0 0a 00 00 00 90 f9 7f '.4...4......... 08c3ffd0 00 00 07 00 c0 ff c3 08 - 00 00 07 00 ff ff ff ff ................ 08c3ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 08c3fff0 00 00 00 00 d6 e6 92 6a - c0 0a 00 00 00 00 00 00 .......j........ 08c40000 6f 6f 6f 6f c0 c0 c0 6f - 6f c0 c0 6f d7 c0 c0 c0 oooo...oo..o.... 08c40010 74 74 74 74 74 74 c0 c0 - 74 74 74 74 74 74 74 74 tttttt..tttttttt 08c40020 74 74 90 90 4f 4f 90 90 - 74 55 55 90 4f 4f 4f 35 tt..OO..tUU.OOO5 08c40030 4f 35 4f a7 4f 35 64 64 - 64 64 64 3b 3b 61 3b 3b O5O.O5ddddd;;a;; 08c40040 3b 3b 3b 02 3b 02 3b 64 - 35 35 35 35 50 35 3b 64 ;;;.;.;d5555P5;d 08c40050 64 35 35 35 4f 4f 35 64 - 64 64 35 4f 4f 35 35 35 d555OO5ddd5OO555 08c40060 35 35 35 35 35 4f 4f 35 - 35 35 35 35 a7 35 35 64 55555OO55555.55d 08c40070 64 64 3b 02 02 61 02 f8 - d6 f4 f4 f4 8e 4d 41 ec dd;..a.......MA. 08c40080 c1 c1 77 77 31 31 77 77 - ec 41 41 e4 e4 4d e4 e2 ..ww11ww.AA..M.. 线程 ID 0x508 的状态转储 eax=00000010 ebx=00000000 ecx=084f4a48 edx=00000000 esi=77f8377b edi=00000610 eip=77f83786 esp=0b6dff44 ebp=0b6dff68 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0c23d517=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0B6DFF68 77E67837 00000610 FFFFFFFF 00000000 6A92FC30 ntdll!NtWaitForSingleObject 77E67828 74FF0C24 7EE80C24 C2FFFFFF 74FF0008 15FF0424 kernel32!WaitForSingleObject 74FF006A 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 0b6dff44 0f 78 e6 77 10 06 00 00 - 00 00 00 00 00 00 00 00 .x.w............ 0b6dff54 00 00 00 00 98 65 51 08 - 47 77 e6 77 10 06 00 00 .....eQ.Gw.w.... 0b6dff64 10 06 00 00 28 78 e6 77 - 37 78 e6 77 10 06 00 00 ....(x.w7x.w.... 0b6dff74 ff ff ff ff 00 00 00 00 - 30 fc 92 6a 10 06 00 00 ........0..j.... 0b6dff84 ff ff ff ff 00 00 00 00 - ec ff 6d 0b 98 65 51 08 ..........m..eQ. 0b6dff94 98 65 51 08 f0 fb 92 6a - 98 65 51 08 a0 a0 34 08 .eQ....j.eQ...4. 0b6dffa4 48 4d ca 08 00 00 00 00 - 00 00 00 00 00 00 00 00 HM.............. 0b6dffb4 a4 67 f8 77 dd 87 e6 77 - 00 00 00 00 a0 a0 34 08 .g.w...w......4. 0b6dffc4 48 4d ca 08 00 00 00 00 - 00 80 f9 7f b6 02 7f 08 HM.............. 0b6dffd4 c0 ff 6d 0b b6 02 7f 08 - ff ff ff ff 56 18 e8 77 ..m.........V..w 0b6dffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0b6dfff4 a6 fb 92 6a 00 00 00 00 - 00 00 00 00 fe fe fe fe ...j............ 0b6e0004 fe fe fe fe fe fe fe fe - fe fe fe fe fe fe fe fe ................ 0b6e0014 fe fe fe fe fd fd fd ff - ff ff ff ff ff ff ff ff ................ 0b6e0024 fe fe fe fb fb fb fd fd - fd ff ff ff fe fe fe fe ................ 0b6e0034 fe fe fe fe fe fe fe fe - fe fe fe fe fe fe fe fe ................ 0b6e0044 fe fe fe fe fe fe fe fe - fe fe fe fe fe fe fe fe ................ 0b6e0054 fe fe fe fe fe fe fe fe - fe fe fe fe ff ff ff fe ................ 0b6e0064 fe fe f9 f9 f9 fa fa fa - fe fe fe ff ff ff ff ff ................ 0b6e0074 ff fd fd fd fe fe fe fe - fe fe ff ff ff fe fe fe ................ 线程 ID 0x374 的状态转储 eax=000000cd ebx=00000001 ecx=096d2938 edx=00000000 esi=77f837a7 edi=00000001 eip=77f837b2 esp=0c47fd10 ebp=0c47fd5c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0cfdd2e3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0C47FD5C 6A9016C0 0C47FD34 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 msjava!GCEnable 线程 ID 0x424 的状态转储 eax=00000000 ebx=0853ea18 ecx=0c4bfecc edx=00000000 esi=0c4bfda4 edi=00000000 eip=77df1d6b esp=0c4bfd64 ebp=0c4bfd84 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0d01d337=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0d01d337=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0d01d337=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0C4BFD84 6B086A5E 0C4BFDA4 00000000 00000000 00000000 user32!TranslateMessageEx 0C4BFDC0 6B086987 00000002 0853E618 0853E8EC 80004005 msawt!com_ms_awt_WToolkit_createNativeToolkit 0C4BFDD8 6A91E64C 03617C08 0853EA18 0C4BFEA4 6A91E50F msawt!com_ms_awt_WToolkit_createNativeToolkit 0C4BFDE8 6A91E50F 6B086942 0C4BFE04 00000002 03617C08 msjava!convert_Java_Object_to_IUnknown 0C4BFEA4 086F1525 0C4BFEC8 00000001 00000000 0853E61C msjava!convert_Java_Object_to_IUnknown 0C4BFEC8 FFFFFFFF 0853E8EC 0B6FE567 096DD598 096DD5B0 00000003 00000000 00000000 00000000 00000000 00000000 线程 ID 0x550 的状态转储 eax=04c018c0 ebx=00000001 ecx=00000004 edx=00000000 esi=77f837a7 edi=00000001 eip=77f837b2 esp=0cbdfd58 ebp=0cbdfda4 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0d73d32b=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0CBDFDA4 6A9016C0 0CBDFD7C 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 msjava!GCEnable 线程 ID 0x580 的状态转储 eax=78700ca8 ebx=80020000 ecx=0007a4b8 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0d1ffe28 ebp=0d1fff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0dd5d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0D1FFF74 787020D9 78702528 0007E288 0162FA9C 00000022 ntdll!NtReplyWaitReceivePortEx 0D1FFFA8 787024DA 000BDE00 0D1FFFEC 77E687DD 04B678F0 rpcrt4!NdrConformantArrayMemorySize 0D1FFFB4 77E687DD 04B678F0 0162FA9C 00000022 04B678F0 rpcrt4!NdrConformantArrayMemorySize 0D1FFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x3e0 的状态转储 eax=0000012e ebx=00000000 ecx=01907960 edx=00000000 esi=024f74c8 edi=00000000 eip=77df2268 esp=0d23ee64 ebp=0d23eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0dd9c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0D23EEA8 76DF217C 002E05D4 0D23FFA4 04C45B70 00000000 user32!WaitMessage 0D23EF30 76DF1F65 04C45B70 00070718 00000000 04C45B70 browseui!Ordinal102 0D23FFAC 76C66950 04C45B70 77E687DD 04C45B70 00070718 browseui!Ordinal102 0D23FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0d23ee64 92 23 df 76 a4 ff 23 0d - 70 5b c4 04 00 00 00 00 .#.v..#.p[...... 0d23ee74 16 06 36 00 13 01 00 00 - 02 10 00 00 1a 52 a9 75 ..6..........R.u 0d23ee84 43 16 45 0a 5e 01 00 00 - 00 01 00 00 98 52 07 00 C.E.^........R.. 0d23ee94 01 00 00 00 c8 74 4f 02 - 01 44 00 80 30 dd 4c 02 .....tO..D..0.L. 0d23eea4 00 00 00 00 30 ef 23 0d - 7c 21 df 76 d4 05 2e 00 ....0.#.|!.v.... 0d23eeb4 a4 ff 23 0d 70 5b c4 04 - 00 00 00 00 00 00 00 00 ..#.p[.......... 0d23eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0d23eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0d23eee4 f4 ee 23 0d a4 ff 23 0d - 00 00 00 00 00 00 00 00 ..#...#......... 0d23eef4 00 00 00 00 00 00 00 00 - 20 ef 23 0d 37 78 e6 77 ........ .#.7x.w 0d23ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0d23ef14 ff 02 fa 77 b4 ee 23 0d - 78 dd 06 00 dc ff 23 0d ...w..#.x.....#. 0d23ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 23 0d Rz.vxi.v......#. 0d23ef34 65 1f df 76 70 5b c4 04 - 18 07 07 00 00 00 00 00 e..vp[.......... 0d23ef44 70 5b c4 04 00 00 00 00 - 00 00 00 00 00 00 00 00 p[.............. 0d23ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d23ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d23ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d23ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d23ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x558 的状态转储 eax=0d36ffe4 ebx=0d36ffdc ecx=00000000 edx=bc2d4924 esi=0d332cbc edi=00000001 eip=77f8e4ca esp=0d332c38 ebp=0d332ca4 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00010246 函数: RtlSetBits 77f8e49c 8b7508 mov esi,[ebp+0x8] ss:0de90276=???????? 77f8e49f 3b5df8 cmp ebx,[ebp+0xf8] ss:0de90276=???????? 77f8e4a2 8d4308 lea eax,[ebx+0x8] ds:0decd5ae=???????? 77f8e4a5 0f82e7330200 jb RtlTraceDatabaseEnumerate+0xfd (77fb1892) 77f8e4ab 3b45f4 cmp eax,[ebp+0xf4] ss:0de90276=???????? 77f8e4ae 0f87de330200 jnbe RtlTraceDatabaseEnumerate+0xfd (77fb1892) 77f8e4b4 f6c303 test bl,0x3 77f8e4b7 0f85d5330200 jne RtlTraceDatabaseEnumerate+0xfd (77fb1892) 77f8e4bd f6056af4fc7780 ds:77fcf46a=00 test byte ptr [NlsMbOemCodePageTag+0x152 (77fcf46a)],0x80 77f8e4c4 0f8551330200 jne RtlTraceDatabaseEnumerate+0x86 (77fb181b) 77f8e4ca ff7304 push dword ptr [ebx+0x4] ds:0decd5ae=???????? 77f8e4cd 8d45f0 lea eax,[ebp+0xf0] ss:0de90276=???????? 77f8e4d0 50 push eax 77f8e4d1 ff750c push dword ptr [ebp+0xc] ss:0de90276=???????? 77f8e4d4 53 push ebx 77f8e4d5 56 push esi 77f8e4d6 e83affffff call RtlSetBits+0x305 (77f8e415) 77f8e4db f6056af4fc7780 ds:77fcf46a=00 test byte ptr [NlsMbOemCodePageTag+0x152 (77fcf46a)],0x80 77f8e4e2 8bf8 mov edi,eax 77f8e4e4 0f8547330200 jne RtlTraceDatabaseEnumerate+0x9c (77fb1831) 77f8e4ea 395dfc cmp [ebp+0xfc],ebx ss:0de90276=???????? 77f8e4ed 0f844c330200 je RtlTraceDatabaseEnumerate+0xaa (77fb183f) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0D332CA4 77FA0316 0D332CBC 0D332CD8 0D332CBC 0D332CD8 ntdll!RtlSetBits 0D33302C 37F02EAB D10105FB 00000000 00000000 00000002 ntdll!KiUserExceptionDispatcher 0D3330E8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3331A4 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333260 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D33331C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3333D8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333494 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333550 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D33360C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3336C8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333784 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333840 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3338FC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3339B8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333A74 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333B30 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333BEC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333CA8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333D64 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333E20 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333EDC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D333F98 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334054 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334110 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3341CC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334288 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334344 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334400 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3344BC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334578 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334634 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3346F0 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3347AC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334868 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334924 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3349E0 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334A9C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334B58 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334C14 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334CD0 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334D8C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334E48 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334F04 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D334FC0 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D33507C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335138 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3351F4 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3352B0 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D33536C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335428 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3354E4 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3355A0 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D33565C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335718 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3357D4 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335890 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D33594C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335A08 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335AC4 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335B80 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335C3C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335CF8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335DB4 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335E70 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335F2C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D335FE8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3360A4 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336160 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D33621C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3362D8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336394 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336450 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D33650C 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3365C8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336684 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336740 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3367FC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3368B8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336974 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336A30 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336AEC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336BA8 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336C64 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336D20 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336DDC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336E98 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D336F54 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D337010 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3370CC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D337188 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D337244 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D337300 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3373BC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D337478 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D337534 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3375F0 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D3376AC 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D337768 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut 0D337824 37F02EAB D10105FB 00000000 00000000 00000002 !xe_ExtTextOut *----> 原始堆栈转储 <----* 0d332c38 fb 05 01 d1 ac 1b f4 77 - bc 2c 33 0d 00 00 00 00 .......w.,3..... 0d332c48 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d332c58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d332c68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d332c78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d332c88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d332c98 00 00 37 0d 00 10 33 0d - 00 00 00 00 2c 30 33 0d ..7...3.....,03. 0d332ca8 16 03 fa 77 bc 2c 33 0d - d8 2c 33 0d bc 2c 33 0d ...w.,3..,3..,3. 0d332cb8 d8 2c 33 0d fd 00 00 c0 - 00 00 00 00 00 00 00 00 .,3............. 0d332cc8 10 2d f0 37 02 00 00 00 - 01 00 00 00 a0 2f 33 0d .-.7........./3. 0d332cd8 3f 00 01 00 68 ca 6b 81 - c4 46 2d bc c2 0d 01 a0 ?...h.k..F-..... 0d332ce8 a8 d7 01 a0 d4 46 2d bc - 00 00 00 00 7f 02 ff ff .....F-......... 0d332cf8 00 40 ff ff ff ff ff ff - 29 d1 1c 02 1b 00 9f 05 .@......)....... 0d332d08 70 29 1e 0e 23 00 ff ff - 00 00 00 ff 00 00 00 ff p)..#........... 0d332d18 ff ff 00 00 00 00 00 00 - ff 00 ff ff ff 00 ff 00 ................ 0d332d28 ff 00 ff 00 ff ff 00 00 - 00 00 00 00 ff 00 ff ff ................ 0d332d38 ff 00 ff 00 ff 00 ff 00 - ff ff ff 00 ff 00 ff 00 ................ 0d332d48 ff 00 ff ff 00 00 00 00 - 00 00 00 00 ff ff 00 00 ................ 0d332d58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0d332d68 38 00 00 00 23 00 00 00 - 23 00 00 00 fb 05 01 d1 8...#...#....... 线程 ID 0x80 的状态转储 eax=00000001 ebx=00000002 ecx=04afea18 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0d77fe5c ebp=0d77fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0e2dd42f=00000f00 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0D77FEA8 77DF2A00 0D77FE80 00000001 00000000 0D77FEA0 ntdll!NtWaitForMultipleObjects 0D77FF04 77DF2A77 0D77FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0D77FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0D77FF74 77C58FFD 0D77FFA0 0D77FFA4 0D77FFA8 0D77FF9C shlwapi!Ordinal271 0D77FFAC 77C58F85 76BD1253 77E687DD 00000000 01B8CF6C shlwapi!Ordinal394 0D77FFEC 00000000 77C58F5C 00000000 00000000 0707070A shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0d77fe5c b7 7a e6 77 02 00 00 00 - 80 fe 77 0d 01 00 00 00 .z.w......w..... 0d77fe6c 00 00 00 00 a0 fe 77 0d - 00 00 00 00 00 00 00 00 ......w......... 0d77fe7c 02 00 00 00 dc 01 00 00 - 30 08 00 00 00 00 00 00 ........0....... 0d77fe8c 68 2f 0a 00 b0 62 c0 04 - 76 f8 bc 76 60 e0 03 10 h/...b..v..v`... 0d77fe9c 88 c7 03 08 00 ba 3c dc - ff ff ff ff 04 ff 77 0d ......<.......w. 0d77feac 00 2a df 77 80 fe 77 0d - 01 00 00 00 00 00 00 00 .*.w..w......... 0d77febc a0 fe 77 0d 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ..w.....`....A.w 0d77fecc 00 00 00 00 dc 01 00 00 - 30 08 00 00 58 90 bc 76 ........0...X..v 0d77fedc 00 00 00 00 00 00 00 00 - 0f ee bc 76 b0 62 c0 04 ...........v.b.. 0d77feec 00 00 00 00 00 00 00 00 - 00 00 00 00 cc 16 f9 7f ................ 0d77fefc 00 00 00 00 30 08 00 00 - 20 ff 77 0d 77 2a df 77 ....0... .w.w*.w 0d77ff0c d0 fe 77 0d c0 41 c9 77 - 60 ea 00 00 41 00 00 00 ..w..A.w`...A... 0d77ff1c 00 00 00 00 74 ff 77 0d - ff 64 c5 77 01 00 00 00 ....t.w..d.w.... 0d77ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0d77ff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 78 ec be 04 .....A.wm1.wx... 0d77ff4c b0 62 c0 04 78 ec be 04 - 00 00 00 00 49 d0 bc 76 .b..x.......I..v 0d77ff5c b0 62 c0 04 8c ff 77 0d - 4c 05 45 0a a0 41 c9 77 .b....w.L.E..A.w 0d77ff6c 60 ea 00 00 01 00 00 00 - ac ff 77 0d fd 8f c5 77 `.........w....w 0d77ff7c a0 ff 77 0d a4 ff 77 0d - a8 ff 77 0d 9c ff 77 0d ..w...w...w...w. 0d77ff8c 60 ea 00 00 6c cf b8 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x304 的状态转储 eax=000000f1 ebx=00000000 ecx=000000ad edx=00000000 esi=001153c8 edi=00000000 eip=77df2268 esp=0eb9ee64 ebp=0eb9eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0f6fc437=777427ff 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0EB9EEA8 76DF217C 00710242 0EB9FFA4 04B33920 00000000 user32!WaitMessage 0EB9EF30 76DF1F65 04B33920 00070718 00000000 04B33920 browseui!Ordinal102 0EB9FFAC 76C66950 04B33920 77E687DD 04B33920 00070718 browseui!Ordinal102 0EB9FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0eb9ee64 92 23 df 76 a4 ff b9 0e - 20 39 b3 04 00 00 00 00 .#.v.... 9...... 0eb9ee74 5a 06 2a 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 Z.*............. 0eb9ee84 53 16 45 0a 5e 01 00 00 - 00 01 00 00 98 52 07 00 S.E.^........R.. 0eb9ee94 01 00 00 00 c8 53 11 00 - 01 44 00 80 e8 e4 d5 04 .....S...D...... 0eb9eea4 00 00 00 00 30 ef b9 0e - 7c 21 df 76 42 02 71 00 ....0...|!.vB.q. 0eb9eeb4 a4 ff b9 0e 20 39 b3 04 - 00 00 00 00 00 00 00 00 .... 9.......... 0eb9eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0eb9eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0eb9eee4 f4 ee b9 0e a4 ff b9 0e - 00 00 00 00 00 00 00 00 ................ 0eb9eef4 00 00 00 00 00 00 00 00 - 20 ef b9 0e 37 78 e6 77 ........ ...7x.w 0eb9ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0eb9ef14 ff 02 fa 77 b4 ee b9 0e - 78 dd 06 00 dc ff b9 0e ...w....x....... 0eb9ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff b9 0e Rz.vxi.v........ 0eb9ef34 65 1f df 76 20 39 b3 04 - 18 07 07 00 00 00 00 00 e..v 9.......... 0eb9ef44 20 39 b3 04 00 00 00 00 - 00 00 00 00 00 00 00 00 9.............. 0eb9ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0eb9ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0eb9ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0eb9ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0eb9ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x5a4 的状态转储 eax=00000000 ebx=00000000 ecx=00000002 edx=00000000 esi=77f41bac edi=01010057 eip=37f0309a esp=111e3000 ebp=111e3008 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00010246 函数: xe_ExtTextOutW 37f03090 55 push ebp 37f03091 8bec mov ebp,esp 37f03093 6aff push 0xff 37f03095 68c0a1f037 push 0x37f0a1c0 错误 ->37f0309a 682050f037 push 0x37f05020 37f0309f 64a100000000 mov eax,fs:[00000000] fs:00000000=???????? 37f030a5 50 push eax 37f030a6 64892500000000 mov fs:[00000000],esp fs:00000000=???????? 37f030ad 83ec78 sub esp,0x78 37f030b0 53 push ebx 37f030b1 56 push esi 37f030b2 57 push edi 37f030b3 e848e0ffff call 37f01100 37f030b8 a1989df037 mov eax,[37f09d98] ds:37f09d98=00000001 37f030bd 85c0 test eax,eax 37f030bf 0f8459010000 je xe_ExtTextOutW+0x18e (37f0321e) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 111E3008 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E30C4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3180 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E323C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E32F8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E33B4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3470 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E352C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E35E8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E36A4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3760 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E381C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E38D8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3994 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3A50 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3B0C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3BC8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3C84 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3D40 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3DFC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3EB8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E3F74 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4030 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E40EC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E41A8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4264 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4320 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E43DC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4498 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4554 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4610 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E46CC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4788 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4844 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4900 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E49BC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4A78 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4B34 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4BF0 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4CAC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4D68 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4E24 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4EE0 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E4F9C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5058 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5114 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E51D0 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E528C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5348 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5404 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E54C0 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E557C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5638 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E56F4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E57B0 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E586C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5928 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E59E4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5AA0 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5B5C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5C18 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5CD4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5D90 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5E4C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5F08 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E5FC4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6080 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E613C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E61F8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E62B4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6370 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E642C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E64E8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E65A4 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6660 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E671C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E67D8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6894 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6950 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6A0C 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6AC8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6B84 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6C40 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6CFC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6DB8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6E74 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6F30 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E6FEC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E70A8 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E7164 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E7220 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E72DC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E7398 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E7454 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E7510 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E75CC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E7688 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E7744 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E7800 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW 111E78BC 37F03244 01010057 00000000 00000000 00000002 !xe_ExtTextOutW *----> 原始堆栈转储 <----* 111e3000 c0 a1 f0 37 ff ff ff ff - c4 30 1e 11 44 32 f0 37 ...7.....0..D2.7 111e3010 57 00 01 01 00 00 00 00 - 00 00 00 00 02 00 00 00 W............... 111e3020 24 e8 21 11 00 00 00 00 - 00 00 00 00 00 00 00 00 $.!............. 111e3030 57 00 01 01 ac 1b f4 77 - 00 00 00 00 00 00 00 00 W......w........ 111e3040 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e3050 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e3060 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e3070 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e3080 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e3090 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e30a0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e30b0 00 00 00 00 70 31 1e 11 - 20 50 f0 37 c0 a1 f0 37 ....p1.. P.7...7 111e30c0 ff ff ff ff 80 31 1e 11 - 44 32 f0 37 57 00 01 01 .....1..D2.7W... 111e30d0 00 00 00 00 00 00 00 00 - 02 00 00 00 24 e8 21 11 ............$.!. 111e30e0 00 00 00 00 00 00 00 00 - 00 00 00 00 57 00 01 01 ............W... 111e30f0 ac 1b f4 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 111e3100 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e3110 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e3120 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 111e3130 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1336) 时间: 2003-8-17 @ 17:18:08.781 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 176 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 448 spoolsv.exe 476 ccEvtMgr.exe 496 svchost.exe 564 navapsvc.exe 596 regsvc.exe 704 MSTask.exe 740 WinMgmt.exe 800 svchost.exe 964 Explorer.exe 1008 Rundll32.exe 1116 daemon.exe 1128 ccApp.exe 1188 RealPlay.exe 1204 internat.exe 1240 AcroTray.exe 1324 XDICT.exe 1380 RUNDLL32.exe 1388 RUNDLL32.exe 1144 wuauclt.exe 212 cthighway.exe 512 conime.exe 1348 NAVW32.exe 1336 iexplore.exe 1076 cmd.exe 1228 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (012C0000 - 012C8000) (01310000 - 01320000) (01430000 - 0144C000) (01450000 - 01469000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (770F0000 - 772ED000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01680000 - 01697000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01C60000 - 01C7B000) (01D90000 - 01DAE000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (02160000 - 022ED000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (75010000 - 75020000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (68EF0000 - 68F0F000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (6AC80000 - 6ACBC000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (76DB0000 - 76DC1000) (6E170000 - 6E18A000) (73800000 - 73824000) 线程 ID 0x3b8 的状态转储 eax=00000000 ebx=00000000 ecx=023241f0 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 000F0150 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 ca 00 1b 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0006dd68 15 93 b8 0a d1 02 00 00 - 58 01 00 00 00 00 00 00 ........X....... 0006dd78 05 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 50 01 0f 00 ........|!.vP... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x528 的状态转储 eax=000a3e38 ebx=ffffffff ecx=00000101 edx=00000000 esi=7fffffff edi=00000102 eip=77f83786 esp=0153facc ebp=0153fb04 iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0209d09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0153FB04 74F57EE6 000001DC 000001E0 00000000 00000004 ntdll!NtWaitForSingleObject 0153FBF0 74FB1DA9 00000002 0153FE84 0153FC7C 0153FD80 msafd!WSPSetSockOpt 0153FC54 76BD6F2E 00000002 0153FE84 0153FC7C 0153FD80 ws2_32!select 0153FFB0 76BD6E24 77E687DD 000A2F68 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0153FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0153facc d2 bc f5 74 dc 01 00 00 - 01 00 00 00 f0 fa 53 01 ...t..........S. 0153fadc 84 fe 53 01 78 fb 53 01 - 68 fb 53 01 3a 5b 36 79 ..S.x.S.h.S.:[6y 0153faec a0 64 c3 01 ff ff ff ff - ff ff ff 7f 38 3e 0a 00 .d..........8>.. 0153fafc 00 00 00 00 00 00 00 00 - f0 fb 53 01 e6 7e f5 74 ..........S..~.t 0153fb0c dc 01 00 00 e0 01 00 00 - 00 00 00 00 04 00 00 00 ................ 0153fb1c 80 fd 53 01 60 3e 0a 00 - 7c fc 53 01 e0 5c a5 ff ..S.`>..|.S..\.. 0153fb2c ff ff ff ff 80 38 c8 4d - ff ff ff ff e0 01 00 00 .....8.M........ 0153fb3c dc 01 00 00 00 00 00 00 - 00 00 07 00 90 fb 53 01 ..............S. 0153fb4c 17 20 01 00 80 fb 53 01 - 10 00 00 00 00 00 00 00 . ....S......... 0153fb5c 06 00 00 00 e0 5c a5 ff - ff ff ff ff 60 95 6d 4d .....\......`.mM 0153fb6c ff ff ff ff 03 00 00 00 - 00 3e 0a 00 e0 01 00 00 .........>...... 0153fb7c 19 00 00 00 30 00 00 00 - 50 0d 00 00 04 00 00 00 ....0...P....... 0153fb8c a0 41 c9 77 50 0d 00 00 - 02 01 00 00 08 36 f8 77 .A.wP........6.w 0153fb9c ff ff ff ff ec fb 53 01 - 1e 73 e6 77 00 00 07 00 ......S..s.w.... 0153fbac 38 3e 0a 00 24 00 00 00 - 01 00 00 00 68 fb 53 01 8>..$.......h.S. 0153fbbc 44 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 D............... 0153fbcc 00 00 00 00 1c 00 00 00 - 9c fb 53 01 1c fb 53 01 ..........S...S. 0153fbdc 24 fc 53 01 44 fc 53 01 - 36 df f5 74 78 30 f5 74 $.S.D.S.6..tx0.t 0153fbec ff ff ff ff 54 fc 53 01 - a9 1d fb 74 02 00 00 00 ....T.S....t.... 0153fbfc 84 fe 53 01 7c fc 53 01 - 80 fd 53 01 90 ff 53 01 ..S.|.S...S...S. 线程 ID 0x480 的状态转储 eax=00000000 ebx=00000004 ecx=00000002 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=015ffd24 ebp=015ffd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0215d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 015FFD70 77E6A31D 015FFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 015FFFB4 77E687DD 00000005 000A7B04 7FFDB000 000A7B10 kernel32!WaitForMultipleObjects 015FFFEC 00000000 777F21FE 000A7B10 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 015ffd24 b7 7a e6 77 04 00 00 00 - 48 fd 5f 01 01 00 00 00 .z.w....H._..... 015ffd34 00 00 00 00 00 00 00 00 - 01 00 00 00 10 7b 0a 00 .............{.. 015ffd44 01 00 00 00 24 02 00 00 - 28 02 00 00 38 02 00 00 ....$...(...8... 015ffd54 cc 02 00 00 fb 00 00 00 - eb 01 00 00 c2 02 00 00 ................ 015ffd64 34 02 00 00 11 00 00 00 - 02 00 00 00 b4 ff 5f 01 4............._. 015ffd74 1d a3 e6 77 48 fd 5f 01 - 01 00 00 00 00 00 00 00 ...wH._......... 015ffd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 015ffd94 b0 fe 5f 01 00 00 00 00 - ff ff ff ff 10 7b 0a 00 .._..........{.. 015ffda4 00 b0 fd 7f 04 7b 0a 00 - e3 03 00 00 b6 02 00 00 .....{.......... 015ffdb4 d6 01 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 015ffdc4 23 00 00 00 23 00 00 00 - 04 7b 0a 00 00 b0 fd 7f #...#....{...... 015ffdd4 10 7b 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 .{...........!.w 015ffde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 015ffdf4 fc ff 5f 01 23 00 00 00 - db 02 00 00 eb 01 00 00 .._.#........... 015ffe04 7b 01 00 00 59 02 00 00 - d9 02 00 00 d9 03 00 00 {...Y........... 015ffe14 5a 04 00 00 2a 03 00 00 - 7a 02 00 00 4a 02 00 00 Z...*...z...J... 015ffe24 9a 02 00 00 6a 03 00 00 - ba 04 00 00 8d 03 00 00 ....j........... 015ffe34 ad 02 00 00 4d 02 00 00 - 6d 02 00 00 0d 03 00 00 ....M...m....... 015ffe44 2d 04 00 00 02 04 00 00 - f2 02 00 00 62 02 00 00 -...........b... 015ffe54 52 02 00 00 c2 02 00 00 - b2 03 00 00 89 04 00 00 R............... 线程 ID 0x3e0 的状态转储 eax=000000c0 ebx=0000003f ecx=00000317 edx=00000000 esi=0207ec00 edi=00000001 eip=77f837b2 esp=0207ebe8 ebp=0207ffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02bdc1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0207FFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 0207FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0207ebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 07 02 01 00 00 00 ...w............ 0207ebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 0207ec08 54 03 00 00 e0 03 00 00 - 0f 00 00 00 0f 00 00 00 T............... 0207ec18 58 03 00 00 28 03 00 00 - a4 03 00 00 b4 03 00 00 X...(........... 0207ec28 c8 03 00 00 e8 03 00 00 - f8 03 00 00 0c 04 00 00 ................ 0207ec38 24 04 00 00 3c 04 00 00 - 4c 04 00 00 60 04 00 00 $...<...L...`... 0207ec48 74 04 00 00 8c 04 00 00 - 9c 04 00 00 00 00 00 00 t............... 0207ec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207eca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0207ed18 00 00 00 00 08 ab 0d 00 - 28 c5 10 00 48 c6 10 00 ........(...H... 线程 ID 0x5bc 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=020bff20 ebp=020bff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02c1d4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 020BFF6C 77E6A31D 020BFF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x374 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=023bff24 ebp=023bff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f1d4f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023BFF70 77E6A31D 023BFF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 023BFFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 023BFFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 023bff24 b7 7a e6 77 02 00 00 00 - 48 ff 3b 02 01 00 00 00 .z.w....H.;..... 023bff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 023bff44 00 00 00 00 1c 05 00 00 - 18 05 00 00 a0 dd 14 81 ................ 023bff54 40 dc 14 81 06 b2 af 75 - 00 20 50 c0 70 a5 9e 81 @......u. P.p... 023bff64 70 a5 9e 81 00 00 00 00 - 00 00 00 00 b4 ff 3b 02 p.............;. 023bff74 1d a3 e6 77 48 ff 3b 02 - 01 00 00 00 00 00 00 00 ...wH.;......... 023bff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 023bff94 a4 ff 3b 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..;............. 023bffa4 1c 05 00 00 18 05 00 00 - 00 00 00 00 00 00 00 00 ................ 023bffb4 ec ff 3b 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..;....w........ 023bffc4 00 00 00 00 00 00 00 00 - 00 e0 f9 7f 45 00 00 00 ............E... 023bffd4 c0 ff 3b 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ..;.E.......V..w 023bffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 023bfff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 023c0004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 023c0014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 023c0024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 023c0034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 023c0044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 023c0054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x294 的状态转储 eax=000011cb ebx=0302ff70 ecx=00000000 edx=00000000 esi=77f8377b edi=000002f8 eip=77f83786 esp=0302ff54 ebp=0302ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03b8d527=00000000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0302FF78 77E67837 000002F8 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 0302ff54 0f 78 e6 77 f8 02 00 00 - 00 00 00 00 70 ff 02 03 .x.w........p... 0302ff64 b4 2b 7b 06 60 03 78 01 - 15 93 b8 0a f0 d8 ff ff .+{.`.x......... 0302ff74 ff ff ff ff 01 00 00 00 - 37 78 e6 77 f8 02 00 00 ........7x.w.... 0302ff84 01 00 00 00 00 00 00 00 - 04 a1 bd 75 f8 02 00 00 ...........u.... 0302ff94 01 00 00 00 60 03 78 01 - ec ff 02 03 5d 28 df 77 ....`.x.....](.w 0302ffa4 60 03 78 01 00 00 00 00 - 9a f4 b2 75 76 01 3a 00 `.x........uv.:. 0302ffb4 74 f4 b2 75 dd 87 e6 77 - 60 03 78 01 5d 28 df 77 t..u...w`.x.](.w 0302ffc4 76 01 3a 00 60 03 78 01 - 00 c0 f9 7f 76 01 3a 00 v.:.`.x.....v.:. 0302ffd4 c0 ff 02 03 76 01 3a 00 - ff ff ff ff 56 18 e8 77 ....v.:.....V..w 0302ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0302fff4 6b f4 b2 75 60 03 78 01 - 00 00 00 00 00 00 00 00 k..u`.x......... 03030004 9e 16 33 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ..3............. 03030014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 03030024 ff ff ff 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03030034 01 00 00 00 0d 01 01 01 - 01 00 00 00 00 00 00 00 ................ 03030044 00 00 00 00 00 00 00 00 - 01 00 00 00 01 00 00 00 ................ 03030054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03030064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 03030074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03030084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x580 的状态转储 eax=02463688 ebx=00000634 ecx=000003bd edx=00000000 esi=030cff98 edi=77df7c12 eip=77df1d6b esp=030cff58 ebp=030cff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03c2d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03c2d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03c2d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 030CFF78 77535C36 030CFF98 00000000 00000000 00000000 user32!TranslateMessageEx 030CFFB4 77E687DD 00000634 77555428 00067CEC 00000634 winmm!midiOutGetNumDevs 030CFFEC 00000000 77535BB9 00000634 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 030cff58 4e 7c df 77 98 ff 0c 03 - 00 00 00 00 00 00 00 00 N|.w............ 030cff68 00 00 00 00 34 06 00 00 - 00 00 00 00 12 7c df 77 ....4........|.w 030cff78 b4 ff 0c 03 36 5c 53 77 - 98 ff 0c 03 00 00 00 00 ....6\Sw........ 030cff88 00 00 00 00 00 00 00 00 - 28 54 55 77 ec 7c 06 00 ........(TUw.|.. 030cff98 32 02 7c 00 bc 03 00 00 - cc 91 8b 06 00 00 00 00 2.|............. 030cffa8 ea 87 b8 0a 55 01 00 00 - fa 01 00 00 ec ff 0c 03 ....U........... 030cffb8 dd 87 e6 77 34 06 00 00 - 28 54 55 77 ec 7c 06 00 ...w4...(TUw.|.. 030cffc8 34 06 00 00 00 b0 f9 7f - 00 00 53 77 c0 ff 0c 03 4.........Sw.... 030cffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 030cffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 030cfff8 34 06 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 4............... 030d0008 1b 00 00 00 2a 00 00 00 - 19 00 00 00 61 00 00 00 ....*.......a... 030d0018 70 08 00 00 53 02 00 00 - 2a 00 00 00 27 00 00 00 p...S...*...'... 030d0028 30 0e 0d 03 30 00 0d 03 - 00 00 00 00 00 00 00 00 0...0........... 030d0038 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 030d0048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 030d0058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 030d0068 00 00 00 00 00 00 00 00 - 90 23 71 04 00 00 00 00 .........#q..... 030d0078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 030d0088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x80 的状态转储 eax=00000013 ebx=00000000 ecx=00000000 edx=00000000 esi=00115148 edi=00000000 eip=77df2268 esp=0489ee64 ebp=0489eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:053fc437=00090000 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0489EEA8 76DF217C 005F015A 0489FFA4 024A0920 00000000 user32!WaitMessage 0489EF30 76DF1F65 024A0920 00070718 00000000 024A0920 browseui!Ordinal102 0489FFAC 76C66950 024A0920 77E687DD 024A0920 00070718 browseui!Ordinal102 0489FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0489ee64 92 23 df 76 a4 ff 89 04 - 20 09 4a 02 00 00 00 00 .#.v.... .J..... 0489ee74 16 02 7a 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 ..z............. 0489ee84 15 93 b8 0a d1 02 00 00 - 58 01 00 00 98 52 07 00 ........X....R.. 0489ee94 01 00 00 00 48 51 11 00 - 01 44 00 80 a0 f4 0f 00 ....HQ...D...... 0489eea4 00 00 00 00 30 ef 89 04 - 7c 21 df 76 5a 01 5f 00 ....0...|!.vZ._. 0489eeb4 a4 ff 89 04 20 09 4a 02 - 00 00 00 00 00 00 00 00 .... .J......... 0489eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0489eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0489eee4 f4 ee 89 04 a4 ff 89 04 - 00 00 00 00 00 00 00 00 ................ 0489eef4 00 00 00 00 00 00 00 00 - 20 ef 89 04 37 78 e6 77 ........ ...7x.w 0489ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0489ef14 ff 02 fa 77 b4 ee 89 04 - 78 dd 06 00 dc ff 89 04 ...w....x....... 0489ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 89 04 Rz.vxi.v........ 0489ef34 65 1f df 76 20 09 4a 02 - 18 07 07 00 00 00 00 00 e..v .J......... 0489ef44 20 09 4a 02 00 00 00 00 - 00 00 00 00 00 00 00 00 .J............. 0489ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0489ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0489ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0489ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0489ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x4a8 的状态转储 eax=00000000 ebx=00000000 ecx=05301e78 edx=00000000 esi=02449fa0 edi=00000000 eip=77df2268 esp=06f2ee64 ebp=06f2eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:07a8c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06F2EEA8 76DF217C 005B0610 06F2FFA4 044631A0 00000000 user32!WaitMessage 06F2EF30 76DF1F65 044631A0 00070718 00000000 044631A0 browseui!Ordinal102 06F2FFAC 76C66950 044631A0 77E687DD 044631A0 00070718 browseui!Ordinal102 06F2FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 06f2ee64 92 23 df 76 a4 ff f2 06 - a0 31 46 04 00 00 00 00 .#.v.....1F..... 06f2ee74 6c 06 21 00 02 80 00 00 - 00 00 00 00 00 00 00 00 l.!............. 06f2ee84 15 93 b8 0a d1 02 00 00 - 58 01 00 00 98 52 07 00 ........X....R.. 06f2ee94 01 00 00 00 a0 9f 44 02 - 01 44 00 80 08 62 5b 04 ......D..D...b[. 06f2eea4 00 00 00 00 30 ef f2 06 - 7c 21 df 76 10 06 5b 00 ....0...|!.v..[. 06f2eeb4 a4 ff f2 06 a0 31 46 04 - 00 00 00 00 00 00 00 00 .....1F......... 06f2eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 06f2eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 06f2eee4 f4 ee f2 06 a4 ff f2 06 - 00 00 00 00 00 00 00 00 ................ 06f2eef4 00 00 00 00 00 00 00 00 - 20 ef f2 06 37 78 e6 77 ........ ...7x.w 06f2ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 06f2ef14 ff 02 fa 77 b4 ee f2 06 - 78 dd 06 00 dc ff f2 06 ...w....x....... 06f2ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff f2 06 Rz.vxi.v........ 06f2ef34 65 1f df 76 a0 31 46 04 - 18 07 07 00 00 00 00 00 e..v.1F......... 06f2ef44 a0 31 46 04 00 00 00 00 - 00 00 00 00 00 00 00 00 .1F............. 06f2ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06f2ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06f2ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06f2ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06f2ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x53c 的状态转储 eax=046b0ab0 ebx=80070000 ecx=77a72d80 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0876fe28 ebp=0876ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:092cd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0876FF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0876FFA8 787024DA 000B6C28 0876FFEC 77E687DD 000A65E8 rpcrt4!NdrConformantArrayMemorySize 0876FFB4 77E687DD 000A65E8 00000000 00000000 000A65E8 rpcrt4!NdrConformantArrayMemorySize 0876FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x558 的状态转储 eax=fffffefe ebx=80070000 ecx=0012fda0 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=087afe28 ebp=087aff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0930d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 087AFF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 087AFFA8 787024DA 024BC688 087AFFEC 77E687DD 031CFFD0 rpcrt4!NdrConformantArrayMemorySize 087AFFB4 77E687DD 031CFFD0 00000000 00000000 031CFFD0 rpcrt4!NdrConformantArrayMemorySize 087AFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x550 的状态转储 eax=786f31f8 ebx=80070000 ecx=0007c298 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=087efe28 ebp=087eff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0934d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 087EFF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 087EFFA8 787024DA 0483AFE0 087EFFEC 77E687DD 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 087EFFB4 77E687DD 0007E3B8 00000000 00000000 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 087EFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x5c8 的状态转储 eax=168a4bc0 ebx=0892ff74 ecx=00d37030 edx=00000000 esi=77f8377b edi=000005e8 eip=77f83786 esp=0892ff58 ebp=0892ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0948d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0892FF7C 77E67837 000005E8 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 02000400 0C010200 5D6F1800 232FF002 00000103 00000000 00000000 00000000 00000000 00000000 00000000 线程 ID 0x1cc 的状态转储 eax=019b0004 ebx=08adff74 ecx=019bf1e0 edx=00000000 esi=77f8377b edi=00000b60 eip=77f83786 esp=08adff58 ebp=08adff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0963d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 08ADFF7C 77E67837 00000B60 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 02000400 0C010200 5D6F1800 232FF002 00000103 00000000 00000000 00000000 00000000 00000000 00000000 线程 ID 0x414 的状态转储 eax=0698196c ebx=00000102 ecx=77a6e870 edx=00000000 esi=77f8318c edi=08ecff74 eip=77f83197 esp=08ecff60 ebp=08ecff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:09a2d533=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 08ECFF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x354 的状态转储 eax=00000000 ebx=00000000 ecx=00000000 edx=00000000 esi=024d0e00 edi=00000000 eip=77df2268 esp=08f0ee64 ebp=08f0eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:09a6c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 08F0EEA8 76DF217C 004305E6 08F0FFA4 04698CF8 00000000 user32!WaitMessage 08F0EF30 76DF1F65 04698CF8 00070718 00000000 04698CF8 browseui!Ordinal102 08F0FFAC 76C66950 04698CF8 77E687DD 04698CF8 00070718 browseui!Ordinal102 08F0FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 08f0ee64 92 23 df 76 a4 ff f0 08 - f8 8c 69 04 00 00 00 00 .#.v......i..... 08f0ee74 50 06 45 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 P.E............. 08f0ee84 15 93 b8 0a d1 02 00 00 - 58 01 00 00 98 52 07 00 ........X....R.. 08f0ee94 01 00 00 00 00 0e 4d 02 - 01 44 00 80 70 c3 45 02 ......M..D..p.E. 08f0eea4 00 00 00 00 30 ef f0 08 - 7c 21 df 76 e6 05 43 00 ....0...|!.v..C. 08f0eeb4 a4 ff f0 08 f8 8c 69 04 - 00 00 00 00 00 00 00 00 ......i......... 08f0eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 08f0eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 08f0eee4 f4 ee f0 08 a4 ff f0 08 - 00 00 00 00 00 00 00 00 ................ 08f0eef4 00 00 00 00 00 00 00 00 - 20 ef f0 08 37 78 e6 77 ........ ...7x.w 08f0ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 08f0ef14 ff 02 fa 77 b4 ee f0 08 - 78 dd 06 00 dc ff f0 08 ...w....x....... 08f0ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff f0 08 Rz.vxi.v........ 08f0ef34 65 1f df 76 f8 8c 69 04 - 18 07 07 00 00 00 00 00 e..v..i......... 08f0ef44 f8 8c 69 04 00 00 00 00 - 00 00 00 00 00 00 00 00 ..i............. 08f0ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 08f0ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 08f0ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 08f0ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 08f0ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x424 的状态转储 eax=00000000 ebx=0456c7e8 ecx=00000000 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=08f8ff84 ebp=08f8ffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:09aed557=???????? 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:09aed557=???????? 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:09aed557=???????? 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:09aed557=???????? 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 08F8FFB4 77E687DD 74F55F4B 7FF9A000 00000000 0456C7E8 ntdll!ZwRemoveIoCompletion 08F8FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x428 的状态转储 eax=090030d8 ebx=00000000 ecx=00000002 edx=00000000 esi=77f41bac edi=a8010786 eip=37f02d10 esp=09002fa4 ebp=0900302c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: xe_ExtTextOut 37f02cf0 55 push ebp 37f02cf1 8bec mov ebp,esp 37f02cf3 6aff push 0xff 37f02cf5 68a0a1f037 push 0x37f0a1a0 37f02cfa 682050f037 push 0x37f05020 37f02cff 64a100000000 mov eax,fs:[00000000] fs:00000000=???????? 37f02d05 50 push eax 37f02d06 64892500000000 mov fs:[00000000],esp fs:00000000=???????? 37f02d0d 83ec78 sub esp,0x78 错误 ->37f02d10 53 push ebx 37f02d11 56 push esi 37f02d12 57 push edi 37f02d13 e8e8e3ffff call 37f01100 37f02d18 a1989df037 mov eax,[37f09d98] ds:37f09d98=00000001 37f02d1d 85c0 test eax,eax 37f02d1f 0f8460010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d25 8b5d1c mov ebx,[ebp+0x1c] ss:09b605fe=???????? 37f02d28 85db test ebx,ebx 37f02d2a 0f8455010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d30 8b7520 mov esi,[ebp+0x20] ss:09b605fe=???????? 37f02d33 83fe01 cmp esi,0x1 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0900302C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090030E8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090031A4 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003260 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 0900331C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090033D8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003494 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003550 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 0900360C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090036C8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003784 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003840 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090038FC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090039B8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003A74 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003B30 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003BEC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003CA8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003D64 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003E20 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003EDC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09003F98 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004054 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004110 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090041CC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004288 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004344 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004400 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090044BC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004578 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004634 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090046F0 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090047AC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004868 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004924 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090049E0 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004A9C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004B58 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004C14 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004CD0 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004D8C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004E48 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004F04 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09004FC0 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 0900507C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005138 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090051F4 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090052B0 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 0900536C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005428 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090054E4 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090055A0 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 0900565C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005718 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090057D4 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005890 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 0900594C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005A08 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005AC4 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005B80 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005C3C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005CF8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005DB4 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005E70 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005F2C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09005FE8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090060A4 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006160 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 0900621C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090062D8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006394 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006450 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 0900650C 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090065C8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006684 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006740 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090067FC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090068B8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006974 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006A30 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006AEC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006BA8 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006C64 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006D20 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006DDC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006E98 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09006F54 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09007010 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090070CC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09007188 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09007244 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09007300 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090073BC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09007478 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09007534 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090075F0 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090076AC 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09007768 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 09007824 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut 090078E0 37F02EAB A8010786 00000000 00000000 00000002 !xe_ExtTextOut *----> 原始堆栈转储 <----* 09002fa4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09002fb4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09002fc4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09002fd4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09002fe4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09002ff4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09003004 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09003014 00 00 00 00 f0 2b 00 09 - d8 30 00 09 20 50 f0 37 .....+...0.. P.7 09003024 a0 a1 f0 37 ff ff ff ff - e8 30 00 09 ab 2e f0 37 ...7.....0.....7 09003034 86 07 01 a8 00 00 00 00 - 00 00 00 00 02 00 00 00 ................ 09003044 e8 eb 03 09 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09003054 86 07 01 a8 ac 1b f4 77 - 00 00 00 00 00 00 00 00 .......w........ 09003064 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09003074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09003084 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09003094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 090030a4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 090030b4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 090030c4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 090030d4 f0 2b 00 09 94 31 00 09 - 20 50 f0 37 a0 a1 f0 37 .+...1.. P.7...7 线程 ID 0x47c 的状态转储 eax=0000000f ebx=00000002 ecx=000a6410 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=09dffe5c ebp=09dffea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0a95d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 09DFFEA8 77DF2A00 09DFFE80 00000001 00000000 09DFFEA0 ntdll!NtWaitForMultipleObjects 09DFFF04 77DF2A77 09DFFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 09DFFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 09DFFF74 77C58FFD 09DFFFA0 09DFFFA4 09DFFFA8 09DFFF9C shlwapi!Ordinal271 09DFFFAC 77C58F85 76BD1253 77E687DD 00000000 0892CF6C shlwapi!Ordinal394 09DFFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x4ac 的状态转储 eax=019c9ea8 ebx=00000002 ecx=00001f01 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0a28fe5c ebp=0a28fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0aded42f=ffdede00 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0A28FEA8 77DF2A00 0A28FE80 00000001 00000000 0A28FEA0 ntdll!NtWaitForMultipleObjects 0A28FF04 77DF2A77 0A28FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0A28FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0A28FF74 77C58FFD 0A28FFA0 0A28FFA4 0A28FFA8 0A28FF9C shlwapi!Ordinal271 0A28FFAC 77C58F85 77F82B95 77E687DD 00000000 0153FA10 shlwapi!Ordinal394 0A28FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x304 的状态转储 eax=0ab88951 ebx=00000002 ecx=7ff97000 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0a40fe5c ebp=0a40fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0af6d42f=ffffff00 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0A40FEA8 77DF2A00 0A40FE80 00000001 00000000 0A40FEA0 ntdll!NtWaitForMultipleObjects 0A40FF04 77DF2A77 0A40FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0A40FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0A40FF74 77C58FFD 0A40FFA0 0A40FFA4 0A40FFA8 0A40FF9C shlwapi!Ordinal271 0A40FFAC 77C58F85 00000000 77E687DD 00000000 00000000 shlwapi!Ordinal394 0A40FFEC 00000000 77C58F5C 00000000 00000000 FFFFFFFF shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0a40fe5c b7 7a e6 77 02 00 00 00 - 80 fe 40 0a 01 00 00 00 .z.w......@..... 0a40fe6c 00 00 00 00 a0 fe 40 0a - 00 00 00 00 00 00 00 00 ......@......... 0a40fe7c 02 00 00 00 e8 01 00 00 - 78 0b 00 00 e8 77 a8 06 ........x....w.. 0a40fe8c 00 00 00 00 28 4f 62 04 - 0f ee bc 76 e0 8d 94 06 ....(Ob....v.... 0a40fe9c 00 00 00 00 00 ba 3c dc - ff ff ff ff 04 ff 40 0a ......<.......@. 0a40feac 00 2a df 77 80 fe 40 0a - 01 00 00 00 00 00 00 00 .*.w..@......... 0a40febc a0 fe 40 0a 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ..@.....`....A.w 0a40fecc 00 00 00 00 e8 01 00 00 - 78 0b 00 00 00 00 00 00 ........x....... 0a40fedc 00 00 00 00 30 ff 40 0a - 2b ee bc 76 e5 03 00 00 ....0.@.+..v.... 0a40feec ee d0 bc 76 28 4f 62 04 - 00 00 00 00 cc 76 f9 7f ...v(Ob......v.. 0a40fefc 00 00 00 00 78 0b 00 00 - 20 ff 40 0a 77 2a df 77 ....x... .@.w*.w 0a40ff0c d0 fe 40 0a c0 41 c9 77 - 60 ea 00 00 41 00 00 00 ..@..A.w`...A... 0a40ff1c 00 00 00 00 74 ff 40 0a - ff 64 c5 77 01 00 00 00 ....t.@..d.w.... 0a40ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0a40ff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 c0 4e 5e 04 .....A.wm1.w.N^. 0a40ff4c e0 8d 94 06 c0 4e 5e 04 - 01 00 00 00 49 d0 bc 76 .....N^.....I..v 0a40ff5c e0 8d 94 06 8c ff 40 0a - 61 89 b8 0a a0 41 c9 77 ......@.a....A.w 0a40ff6c 60 ea 00 00 01 00 00 00 - ac ff 40 0a fd 8f c5 77 `.........@....w 0a40ff7c a0 ff 40 0a a4 ff 40 0a - a8 ff 40 0a 9c ff 40 0a ..@...@...@...@. 0a40ff8c 60 ea 00 00 00 00 00 00 - 00 00 c5 77 00 00 00 00 `..........w.... 发生应用程序意外错误: 应用程序: iexplore.exe (pid=636) 时间: 2003-8-20 @ 21:54:36.343 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 904 Explorer.exe 1020 Rundll32.exe 1028 daemon.exe 1044 ccApp.exe 1092 RealPlay.exe 1108 internat.exe 1008 AcroTray.exe 1412 RUNDLL32.exe 1424 RUNDLL32.exe 276 wuauclt.exe 1380 cthighway.exe 868 conime.exe 1548 XDICT.exe 636 iexplore.exe 1360 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01520000 - 01528000) (01570000 - 01580000) (01690000 - 016AC000) (016B0000 - 016C9000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (770F0000 - 772ED000) (74F90000 - 74F97000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01910000 - 01927000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01FA0000 - 01FBB000) (020D0000 - 020EE000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (75A60000 - 75A88000) (028D0000 - 02A5D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (68EF0000 - 68F0F000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (6AC80000 - 6ACBC000) (751C0000 - 751D5000) 线程 ID 0x32c 的状态转储 eax=00000000 ebx=00000000 ecx=00001010 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 050600DA 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 c6 01 5d 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 ..]............. 0006dd68 28 29 b1 0c d5 03 00 00 - b1 02 00 00 00 00 00 00 ().............. 0006dd78 04 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 da 00 06 05 ........|!.v.... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x574 的状态转储 eax=027e266c ebx=80020000 ecx=00000000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 787020D9 787025B9 0007E288 00000000 4007DDA4 ntdll!NtReplyWaitReceivePortEx 00BCFFA8 787024DA 0007C0F8 00BCFFEC 77E687DD 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 00BCFFB4 77E687DD 0007E3B8 00000000 4007DDA4 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 00BCFFEC 00000000 787024C2 0007E3B8 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 00bcfe28 85 22 70 78 04 01 00 00 - 54 ff bc 00 00 00 00 00 ."px....T....... 00bcfe38 30 90 09 00 58 ff bc 00 - 80 c0 07 00 60 e2 07 00 0...X.......`... 00bcfe48 6d 31 f8 77 1f 00 00 00 - 90 95 89 81 90 95 89 81 m1.w............ 00bcfe58 00 00 00 00 01 00 00 00 - b4 2b c4 bb 00 00 00 00 .........+...... 00bcfe68 58 71 00 00 78 2b c4 bb - 00 00 00 00 72 4f 41 80 Xq..x+......rOA. 00bcfe78 b0 96 89 81 60 57 89 81 - 68 2c c4 bb 1e 01 00 00 ....`W..h,...... 00bcfe88 04 00 00 00 c8 04 29 81 - 66 41 4a 80 80 f3 06 00 ......).fAJ..... 00bcfe98 00 00 00 00 48 f3 06 00 - 57 96 2a 01 00 00 00 00 ....H...W.*..... 00bcfea8 00 00 00 00 01 00 00 00 - 19 00 02 00 00 00 00 00 ................ 00bcfeb8 19 00 02 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfec8 7c 02 00 00 00 00 00 00 - 0c 2c c4 bb 00 00 00 00 |........,...... 00bcfed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcff08 00 00 00 00 a8 28 50 c0 - ef 00 00 00 00 20 50 c0 .....(P...... P. 00bcff18 19 00 02 00 06 00 02 00 - ef 00 00 00 01 00 00 00 ................ 00bcff28 00 20 50 c0 60 6b 10 81 - 80 35 1d 81 00 00 00 00 . P.`k...5...... 00bcff38 64 2c c4 bb ec 35 1d 81 - 80 35 1d 81 10 37 1d 81 d,...5...5...7.. 00bcff48 3a da 42 80 d4 4b 06 80 - e0 36 1d 81 00 00 02 80 :.B..K...6...... 00bcff58 00 a2 2f 4d ff ff ff ff - 50 fe bc 00 00 00 02 80 ../M....P....... 线程 ID 0x528 的状态转储 eax=00000000 ebx=ffffffff ecx=77c941a0 edx=00000000 esi=7fffffff edi=00000102 eip=77f83786 esp=0179facc ebp=0179fb04 iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:022fd09f=00000000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0179FB04 74F57EE6 00000240 00000258 00000000 00000004 ntdll!NtWaitForSingleObject 0179FBF0 74FB1DA9 00000001 0179FE84 0179FC7C 0179FD80 msafd!WSPSetSockOpt 0179FC54 76BD6F2E 00000001 0179FE84 0179FC7C 0179FD80 ws2_32!select 0179FFB0 76BD6E24 77E687DD 000A2CE0 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0179FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0179facc d2 bc f5 74 40 02 00 00 - 01 00 00 00 f0 fa 79 01 ...t@.........y. 0179fadc 84 fe 79 01 78 fb 79 01 - 68 fb 79 01 bc 29 6b 97 ..y.x.y.h.y..)k. 0179faec 22 67 c3 01 ff ff ff ff - ff ff ff 7f b8 77 0a 00 "g...........w.. 0179fafc 00 00 00 00 00 00 00 00 - f0 fb 79 01 e6 7e f5 74 ..........y..~.t 0179fb0c 40 02 00 00 58 02 00 00 - 00 00 00 00 04 00 00 00 @...X........... 0179fb1c 80 fd 79 01 80 78 0a 00 - 7c fc 79 01 00 00 00 00 ..y..x..|.y..... 0179fb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff 58 02 00 00 ............X... 0179fb3c 40 02 00 00 00 00 00 00 - 00 00 07 00 90 fb 79 01 @.............y. 0179fb4c 17 20 01 00 80 fb 79 01 - 10 00 00 00 00 00 00 00 . ....y......... 0179fb5c 06 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 0179fb6c ff ff ff ff 01 00 00 00 - 00 77 0a 00 58 02 00 00 .........w..X... 0179fb7c 19 00 00 00 30 00 00 00 - 58 02 00 00 a0 41 c9 77 ....0...X....A.w 0179fb8c a0 41 c9 77 dc fb 79 01 - 95 2b f8 77 08 36 f8 77 .A.w..y..+.w.6.w 0179fb9c ff ff ff ff ec fb 79 01 - 1e 73 e6 77 00 00 07 00 ......y..s.w.... 0179fbac b8 77 0a 00 24 00 00 00 - 00 00 00 00 68 fb 79 01 .w..$.......h.y. 0179fbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 0179fbcc 00 00 00 00 1c 00 00 00 - 84 fb 79 01 1c fb 79 01 ..........y...y. 0179fbdc 24 fc 79 01 44 fc 79 01 - 36 df f5 74 78 30 f5 74 $.y.D.y.6..tx0.t 0179fbec ff ff ff ff 54 fc 79 01 - a9 1d fb 74 01 00 00 00 ....T.y....t.... 0179fbfc 84 fe 79 01 7c fc 79 01 - 80 fd 79 01 90 ff 79 01 ..y.|.y...y...y. 线程 ID 0x2f8 的状态转储 eax=00000003 ebx=00000001 ecx=00152638 edx=00000000 esi=77f837a7 edi=00000001 eip=77f837b2 esp=017dfe60 ebp=017dfeac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0233d433=00000000 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 017DFEAC 77DF2A00 017DFE84 00000001 00000000 017DFEA4 ntdll!NtWaitForMultipleObjects 017DFF08 77DF2A77 017DFED4 00000000 0000EA60 000000FF user32!MsgWaitForMultipleObjectsEx 017DFF24 76DD9CD1 00000000 00000000 00000000 0000EA60 user32!MsgWaitForMultipleObjects 00090500 00000002 00090050 00000001 000002F8 00000638 browseui!DllGetClassObject 线程 ID 0x2f4 的状态转储 eax=0181ffdc ebx=77f8316d ecx=00000000 edx=00000000 esi=000a5c98 edi=0007c080 eip=77f83197 esp=0181ff78 ebp=0181ffa8 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0237d54b=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0181FFA8 787024DA 0007C0F8 0181FFEC 77E687DD 000A5CC0 ntdll!NtDelayExecution 0181FFB4 77E687DD 000A5CC0 00000000 00000000 000A5CC0 rpcrt4!NdrConformantArrayMemorySize 0181FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x4cc 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffdb000 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=0185fd24 ebp=0185fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:023bd2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0185FD70 77E6A31D 0185FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0185FFB4 77E687DD 00000005 000A708C 7FFDB000 000A7098 kernel32!WaitForMultipleObjects 0185FFEC 00000000 777F21FE 000A7098 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0185fd24 b7 7a e6 77 04 00 00 00 - 48 fd 85 01 01 00 00 00 .z.w....H....... 0185fd34 00 00 00 00 00 00 00 00 - 01 00 00 00 98 70 0a 00 .............p.. 0185fd44 01 00 00 00 18 02 00 00 - 1c 02 00 00 2c 02 00 00 ............,... 0185fd54 cc 02 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0185fd64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff 85 01 ................ 0185fd74 1d a3 e6 77 48 fd 85 01 - 01 00 00 00 00 00 00 00 ...wH........... 0185fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 0185fd94 b0 fe 85 01 00 00 00 00 - ff ff ff ff 98 70 0a 00 .............p.. 0185fda4 00 b0 fd 7f 8c 70 0a 00 - 00 00 00 00 00 00 00 00 .....p.......... 0185fdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 0185fdc4 23 00 00 00 23 00 00 00 - 8c 70 0a 00 00 b0 fd 7f #...#....p...... 0185fdd4 98 70 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 .p...........!.w 0185fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 0185fdf4 fc ff 85 01 23 00 00 00 - 00 00 00 00 00 00 00 00 ....#........... 0185fe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0185fe14 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0185fe24 00 00 00 00 00 00 00 00 - 6f 62 00 00 68 6a 96 81 ........ob..hj.. 0185fe34 00 07 00 00 ae cc 44 80 - 6f 62 00 00 68 6a 96 81 ......D.ob..hj.. 0185fe44 6f 62 00 00 68 6a 96 81 - 01 b2 fd 7f ab 01 00 00 ob..hj.......... 0185fe54 41 d6 44 80 ab 01 00 00 - 70 fc 2c 81 00 b0 fd 7f A.D.....p.,..... 线程 ID 0x5b4 的状态转储 eax=77a7d4f1 ebx=00000102 ecx=00390036 edx=00000000 esi=77f8318c edi=018bff74 eip=77f83197 esp=018bff60 ebp=018bff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0241d533=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 018BFF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x64c 的状态转储 eax=028623a8 ebx=000aed18 ecx=0197ffdc edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=0197ff84 ebp=0197ffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:024dd557=???????? 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:024dd557=???????? 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:024dd557=???????? 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:024dd557=???????? 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FFB4 77E687DD 74F55F4B 7FFDB000 00000000 000AED18 ntdll!ZwRemoveIoCompletion 0197FFEC 00000000 74F54766 000AED18 00000000 01980060 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0197ff84 b8 47 f5 74 dc 02 00 00 - bc ff 97 01 b0 ff 97 01 .G.t............ 0197ff94 a4 ff 97 01 28 2c f5 74 - 00 b0 fd 7f 00 00 00 00 ....(,.t........ 0197ffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 b8 2e 0a 00 ...........t.... 0197ffb4 ec ff 97 01 dd 87 e6 77 - 4b 5f f5 74 00 b0 fd 7f .......wK_.t.... 0197ffc4 00 00 00 00 18 ed 0a 00 - 00 70 fd 7f 64 f7 7d 01 .........p..d.}. 0197ffd4 c0 ff 97 01 64 f7 7d 01 - ff ff ff ff 56 18 e8 77 ....d.}.....V..w 0197ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0197fff4 66 47 f5 74 18 ed 0a 00 - 00 00 00 00 60 00 98 01 fG.t........`... 01980004 00 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01980014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01980024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01980034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01980044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 00 00 00 ................ 01980054 01 04 00 00 00 04 00 00 - 00 00 00 00 04 00 00 00 ................ 01980064 00 03 00 00 01 01 04 00 - 00 00 00 00 06 00 00 00 ................ 01980074 00 00 01 00 00 04 00 00 - 00 0b 00 00 00 00 00 00 ................ 01980084 00 00 00 00 01 03 00 00 - 03 00 00 21 00 00 00 00 ...........!.... 01980094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019800a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 019800b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x4b4 的状态转储 eax=00000000 ebx=01ddff74 ecx=00000002 edx=00000000 esi=77f8377b edi=000002f0 eip=77f83786 esp=01ddff58 ebp=01ddff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0293d52b=8b0e74ff 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01DDFF7C 77E67837 000002F0 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01ddff58 0f 78 e6 77 f0 02 00 00 - 00 00 00 00 74 ff dd 01 .x.w........t... 01ddff68 00 00 00 00 e0 1e 98 01 - 3c 31 f8 77 00 44 5f 9a ........<1.w.D_. 01ddff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 f0 02 00 00 ....m1.w7x.w.... 01ddff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 f0 02 00 00 .'......k..u.... 01ddff98 c0 27 09 00 88 b0 06 00 - e0 1e 98 01 ec ff dd 01 .'.............. 01ddffa8 e0 1e 98 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01ddffb8 dd 87 e6 77 e0 1e 98 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01ddffc8 e0 1e 98 01 00 60 fd 7f - ac 02 00 00 c0 ff dd 01 .....`.......... 01ddffd8 ac 02 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01ddffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01ddfff8 e0 1e 98 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ........LCDT.... 01de0008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 01de0018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 01de0028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 01de0038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 01de0048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 01de0058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 01de0068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 01de0078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01de0088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x4c4 的状态转储 eax=000000c0 ebx=0000003f ecx=023bef50 edx=00000000 esi=023bec00 edi=00000001 eip=77f837b2 esp=023bebe8 ebp=023bffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f1c1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023BFFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 023BFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 023bebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 3b 02 01 00 00 00 ...w......;..... 023bebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 023bec08 58 03 00 00 c4 04 00 00 - 0f 00 00 00 0f 00 00 00 X............... 023bec18 5c 03 00 00 2c 03 00 00 - a8 03 00 00 b8 03 00 00 \...,........... 023bec28 cc 03 00 00 ec 03 00 00 - fc 03 00 00 10 04 00 00 ................ 023bec38 28 04 00 00 40 04 00 00 - 50 04 00 00 64 04 00 00 (...@...P...d... 023bec48 78 04 00 00 90 04 00 00 - a0 04 00 00 00 00 00 00 x............... 023bec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023bec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023bec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023bec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023bec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023beca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023becb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023becc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023becd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023bece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023becf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023bed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023bed18 00 00 00 00 a8 9d 0e 00 - 28 9f 11 00 48 a0 11 00 ........(...H... 线程 ID 0x640 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=023fff20 ebp=023fff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f5d4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023FFF6C 77E6A31D 023FFF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x36c 的状态转储 eax=0243feb4 ebx=0243ff74 ecx=7ff9f000 edx=00000000 esi=77f8377b edi=000004b8 eip=77f83786 esp=0243ff58 ebp=0243ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02f9d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0243FF7C 77E67837 000004B8 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x3d0 的状态转储 eax=00480000 ebx=00000002 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=028cfe5c ebp=028cfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0342d42f=00000300 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 028CFEA8 77DF2A00 028CFE80 00000001 00000000 028CFEA0 ntdll!NtWaitForMultipleObjects 028CFF04 77DF2A77 028CFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 028CFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 028CFF74 77C58FFD 028CFFA0 028CFFA4 028CFFA8 028CFF9C shlwapi!Ordinal271 028CFFAC 77C58F85 76BD1253 77E687DD 00000000 01DDCF6C shlwapi!Ordinal394 028CFFEC 00000000 77C58F5C 00000000 00000000 00905A4D shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 028cfe5c b7 7a e6 77 02 00 00 00 - 80 fe 8c 02 01 00 00 00 .z.w............ 028cfe6c 00 00 00 00 a0 fe 8c 02 - 00 00 00 00 00 00 00 00 ................ 028cfe7c 02 00 00 00 dc 01 00 00 - f0 04 00 00 00 00 00 00 ................ 028cfe8c 00 00 00 00 40 aa 79 02 - ab 00 bd 76 80 5b 14 00 ....@.y....v.[.. 028cfe9c d0 bf 7d 02 00 ba 3c dc - ff ff ff ff 04 ff 8c 02 ..}...<......... 028cfeac 00 2a df 77 80 fe 8c 02 - 01 00 00 00 00 00 00 00 .*.w............ 028cfebc a0 fe 8c 02 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 028cfecc 00 00 00 00 dc 01 00 00 - f0 04 00 00 a3 17 bc 76 ...............v 028cfedc c8 ba 7f 02 30 ff 8c 02 - f0 fd bc 76 e5 03 00 00 ....0......v.... 028cfeec ee d0 bc 76 e8 2b 7c 02 - 00 00 00 00 cc e6 f9 7f ...v.+|......... 028cfefc 00 00 00 00 f0 04 00 00 - 20 ff 8c 02 77 2a df 77 ........ ...w*.w 028cff0c d0 fe 8c 02 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 028cff1c 00 00 00 00 74 ff 8c 02 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 028cff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 028cff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 70 ba 87 02 .....A.wm1.wp... 028cff4c 78 44 12 00 70 ba 87 02 - 01 00 00 00 49 d0 bc 76 xD..p.......I..v 028cff5c 78 44 12 00 8c ff 8c 02 - f7 23 b1 0c a0 41 c9 77 xD.......#...A.w 028cff6c 60 ea 00 00 01 00 00 00 - ac ff 8c 02 fd 8f c5 77 `..............w 028cff7c a0 ff 8c 02 a4 ff 8c 02 - a8 ff 8c 02 9c ff 8c 02 ................ 028cff8c 60 ea 00 00 6c cf dd 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x464 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=02b2ff24 ebp=02b2ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0368d4f7=ffffff00 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02B2FF70 77E6A31D 02B2FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 02B2FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 02B2FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02b2ff24 b7 7a e6 77 02 00 00 00 - 48 ff b2 02 01 00 00 00 .z.w....H....... 02b2ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 02b2ff44 00 00 00 00 60 05 00 00 - 5c 05 00 00 00 b9 1e 81 ....`...\....... 02b2ff54 a0 b7 1e 81 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02b2ff64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff b2 02 ................ 02b2ff74 1d a3 e6 77 48 ff b2 02 - 01 00 00 00 00 00 00 00 ...wH........... 02b2ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 02b2ff94 a4 ff b2 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 02b2ffa4 60 05 00 00 5c 05 00 00 - 00 00 00 00 00 00 00 00 `...\........... 02b2ffb4 ec ff b2 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 02b2ffc4 00 00 00 00 00 00 00 00 - 00 d0 f9 7f 45 00 00 00 ............E... 02b2ffd4 c0 ff b2 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ....E.......V..w 02b2ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02b2fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02b30004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02b30014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02b30024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02b30034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02b30044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02b30054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x5e8 的状态转储 eax=7f6f06a0 ebx=80020000 ecx=00000000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0303fe28 ebp=0303ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:03b9d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0303FF74 787020D9 78702528 0007E288 00BCFA9C 00000022 ntdll!NtReplyWaitReceivePortEx 0303FFA8 787024DA 00131998 0303FFEC 77E687DD 00128C28 rpcrt4!NdrConformantArrayMemorySize 0303FFB4 77E687DD 00128C28 00BCFA9C 00000022 00128C28 rpcrt4!NdrConformantArrayMemorySize 0303FFEC 00000000 787024C2 00128C28 00000000 01010101 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0303fe28 85 22 70 78 04 01 00 00 - 54 ff 03 03 00 00 00 00 ."px....T....... 0303fe38 28 f4 0b 00 58 ff 03 03 - 80 c0 07 00 98 19 13 00 (...X........... 0303fe48 28 8c 12 00 58 55 60 62 - ac eb 6a bc 65 f1 44 80 (...XU`b..j.e.D. 0303fe58 28 d2 24 81 1d f0 44 80 - d8 fd 81 01 10 fe 81 01 (.$...D......... 0303fe68 04 00 00 00 a0 46 11 81 - 58 55 60 e2 68 a2 0f 81 .....F..XU`.h... 0303fe78 58 55 60 e2 28 d2 24 81 - 58 55 60 e2 1d 01 00 00 XU`.(.$.XU`..... 0303fe88 58 55 60 e2 0c 00 00 00 - 50 53 49 e1 00 00 00 00 XU`.....PSI..... 0303fe98 a4 eb 6a bc 00 10 00 00 - 00 10 00 00 38 ed 6a bc ..j.........8.j. 0303fea8 8c 05 46 80 70 93 40 80 - ff ff ff ff d8 fd 81 01 ..F.p.@......... 0303feb8 10 fe 81 01 00 e0 46 80 - 58 55 60 e2 00 00 00 00 ......F.XU`..... 0303fec8 00 e0 46 80 48 ed 6a bc - d0 e6 4a 80 64 ed 6a bc ..F.H.j...J.d.j. 0303fed8 b0 fd 81 01 93 e5 4a 80 - 0c 00 00 00 00 00 00 00 ......J......... 0303fee8 00 00 00 00 00 00 00 00 - 7c 02 00 00 00 00 00 00 ........|....... 0303fef8 34 ec 6a bc 00 00 00 00 - 00 00 00 00 00 00 00 00 4.j............. 0303ff08 bc 01 00 00 93 01 1c 52 - 91 ea 38 26 53 bb bd 57 .......R..8&S..W 0303ff18 28 7f 27 81 60 1d 43 80 - 00 a2 2f 4d ff ff ff ff (.'.`.C.../M.... 0303ff28 cd 6e 11 af 60 6b 10 81 - 40 db 3d 81 00 00 00 00 .n..`k..@.=..... 0303ff38 40 db 3d 81 d0 dc 3d 81 - 64 ec 6a bc f3 da 42 80 @.=...=.d.j...B. 0303ff48 a4 da 42 80 d4 4b 06 80 - a0 dc 3d 81 00 00 02 80 ..B..K....=..... 0303ff58 00 a2 2f 4d ff ff ff ff - 50 fe 03 03 00 00 02 80 ../M....P....... 线程 ID 0x2d4 的状态转储 eax=00000000 ebx=0322ff70 ecx=00010101 edx=00000000 esi=77f8377b edi=000005f8 eip=77f83786 esp=0322ff54 ebp=0322ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03d8d527=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0322FF78 77E67837 000005F8 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 0322ff54 0f 78 e6 77 f8 05 00 00 - 00 00 00 00 70 ff 22 03 .x.w........p.". 0322ff64 4c 9a a8 01 30 9b a0 01 - 28 29 b1 0c f0 d8 ff ff L...0...()...... 0322ff74 ff ff ff ff 01 00 00 00 - 37 78 e6 77 f8 05 00 00 ........7x.w.... 0322ff84 01 00 00 00 00 00 00 00 - 04 a1 bd 75 f8 05 00 00 ...........u.... 0322ff94 01 00 00 00 30 9b a0 01 - ec ff 22 03 5d 28 df 77 ....0.....".](.w 0322ffa4 30 9b a0 01 00 00 00 00 - 9a f4 b2 75 d2 01 3c 00 0..........u..<. 0322ffb4 74 f4 b2 75 dd 87 e6 77 - 30 9b a0 01 5d 28 df 77 t..u...w0...](.w 0322ffc4 d2 01 3c 00 30 9b a0 01 - 00 b0 f9 7f d2 01 3c 00 ..<.0.........<. 0322ffd4 c0 ff 22 03 d2 01 3c 00 - ff ff ff ff 56 18 e8 77 .."...<.....V..w 0322ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0322fff4 6b f4 b2 75 30 9b a0 01 - 00 00 00 00 00 00 00 00 k..u0........... 03230004 9f 00 13 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ................ 03230014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 03230024 ff ff ff 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03230034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 03230044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 03230054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03230064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 03230074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03230084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x5cc 的状态转储 eax=0000004c ebx=000005fc ecx=7ff9ac10 edx=00000000 esi=032bff98 edi=77df7c12 eip=77df1d6b esp=032bff58 ebp=032bff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03e1d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03e1d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03e1d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 032BFF78 77535C36 032BFF98 00000000 00000000 00000000 user32!TranslateMessageEx 032BFFB4 77E687DD 000005FC 77555428 000691BC 000005FC winmm!midiOutGetNumDevs 032BFFEC 00000000 77535BB9 000005FC 00000000 00000008 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 032bff58 4e 7c df 77 98 ff 2b 03 - 00 00 00 00 00 00 00 00 N|.w..+......... 032bff68 00 00 00 00 fc 05 00 00 - 00 00 00 00 12 7c df 77 .............|.w 032bff78 b4 ff 2b 03 36 5c 53 77 - 98 ff 2b 03 00 00 00 00 ..+.6\Sw..+..... 032bff88 00 00 00 00 00 00 00 00 - 28 54 55 77 bc 91 06 00 ........(TUw.... 032bff98 10 05 f0 00 bc 03 00 00 - e4 43 84 02 00 00 00 00 .........C...... 032bffa8 46 24 b1 0c 58 00 00 00 - 47 01 00 00 ec ff 2b 03 F$..X...G.....+. 032bffb8 dd 87 e6 77 fc 05 00 00 - 28 54 55 77 bc 91 06 00 ...w....(TUw.... 032bffc8 fc 05 00 00 00 a0 f9 7f - 00 00 53 77 c0 ff 2b 03 ..........Sw..+. 032bffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 032bffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 032bfff8 fc 05 00 00 00 00 00 00 - 08 00 00 00 02 01 00 00 ................ 032c0008 ee ff ee ff 00 00 00 00 - 00 00 07 00 00 00 00 00 ................ 032c0018 00 00 2c 03 00 02 00 00 - 40 00 2c 03 00 00 4c 03 ..,.....@.,...L. 032c0028 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 032c0038 e0 ff 4b 03 00 00 00 00 - 02 02 08 00 02 01 10 00 ..K............. 032c0048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 032c0058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 032c0068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 032c0078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 032c0088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x540 的状态转储 eax=034b7ee8 ebx=00000002 ecx=01989940 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=035efe5c ebp=035efea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0414d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 035EFEA8 77DF2A00 035EFE80 00000001 00000000 035EFEA0 ntdll!NtWaitForMultipleObjects 035EFF04 77DF2A77 035EFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 035EFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 035EFF74 77C58FFD 035EFFA0 035EFFA4 035EFFA8 035EFF9C shlwapi!Ordinal271 035EFFAC 77C58F85 76BD1253 77E687DD 00000000 0006731C shlwapi!Ordinal394 035EFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x654 的状态转储 eax=00000101 ebx=00000002 ecx=000002ec edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0362fe5c ebp=0362fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0418d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0362FEA8 77DF2A00 0362FE80 00000001 00000000 0362FEA0 ntdll!NtWaitForMultipleObjects 0362FF04 77DF2A77 0362FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0362FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0362FF74 77C58FFD 0362FFA0 0362FFA4 0362FFA8 0362FF9C shlwapi!Ordinal271 0362FFAC 77C58F85 76BD1253 77E687DD 00000000 01DDCF6C shlwapi!Ordinal394 0362FFEC 00000000 77C58F5C 00000000 00000000 00070050 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0362fe5c b7 7a e6 77 02 00 00 00 - 80 fe 62 03 01 00 00 00 .z.w......b..... 0362fe6c 00 00 00 00 a0 fe 62 03 - 00 00 00 00 00 00 00 00 ......b......... 0362fe7c 02 00 00 00 dc 01 00 00 - 88 06 00 00 00 00 00 00 ................ 0362fe8c 00 00 00 00 40 aa 79 02 - ab 00 bd 76 80 5b 14 00 ....@.y....v.[.. 0362fe9c 10 4c 88 02 00 ba 3c dc - ff ff ff ff 04 ff 62 03 .L....<.......b. 0362feac 00 2a df 77 80 fe 62 03 - 01 00 00 00 00 00 00 00 .*.w..b......... 0362febc a0 fe 62 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ..b.....`....A.w 0362fecc 00 00 00 00 dc 01 00 00 - 88 06 00 00 a3 17 bc 76 ...............v 0362fedc c8 ba 7f 02 30 ff 62 03 - f0 fd bc 76 e5 03 00 00 ....0.b....v.... 0362feec ee d0 bc 76 e8 2b 7c 02 - 00 00 00 00 cc 86 f9 7f ...v.+|......... 0362fefc 00 00 00 00 88 06 00 00 - 20 ff 62 03 77 2a df 77 ........ .b.w*.w 0362ff0c d0 fe 62 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 ..b..A.w`...A... 0362ff1c 00 00 00 00 74 ff 62 03 - ff 64 c5 77 01 00 00 00 ....t.b..d.w.... 0362ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0362ff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 20 8f 30 03 .....A.wm1.w .0. 0362ff4c 70 2e 0b 00 20 8f 30 03 - 01 00 00 00 49 d0 bc 76 p... .0.....I..v 0362ff5c 70 2e 0b 00 8c ff 62 03 - 1b 1e b1 0c a0 41 c9 77 p.....b......A.w 0362ff6c 60 ea 00 00 01 00 00 00 - ac ff 62 03 fd 8f c5 77 `.........b....w 0362ff7c a0 ff 62 03 a4 ff 62 03 - a8 ff 62 03 9c ff 62 03 ..b...b...b...b. 0362ff8c 60 ea 00 00 6c cf dd 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x1c8 的状态转储 eax=00000120 ebx=00000002 ecx=000a2b50 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=038ffe5c ebp=038ffea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0445d42f=64c0d6ff 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 038FFEA8 77DF2A00 038FFE80 00000001 00000000 038FFEA0 ntdll!NtWaitForMultipleObjects 038FFF04 77DF2A77 038FFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 038FFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 038FFF74 77C58FFD 038FFFA0 038FFFA4 038FFFA8 038FFF9C shlwapi!Ordinal271 038FFFAC 77C58F85 76BD1253 77E687DD 00000000 01DDCF6C shlwapi!Ordinal394 038FFFEC 00000000 77C58F5C 00000000 00000000 000000C8 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 038ffe5c b7 7a e6 77 02 00 00 00 - 80 fe 8f 03 01 00 00 00 .z.w............ 038ffe6c 00 00 00 00 a0 fe 8f 03 - 00 00 00 00 00 00 00 00 ................ 038ffe7c 02 00 00 00 dc 01 00 00 - e8 06 00 00 00 00 00 00 ................ 038ffe8c cc fe 8f 03 10 4c 88 02 - c5 1b bd 76 01 00 00 00 .....L.....v.... 038ffe9c 48 85 09 00 00 ba 3c dc - ff ff ff ff 04 ff 8f 03 H.....<......... 038ffeac 00 2a df 77 80 fe 8f 03 - 01 00 00 00 00 00 00 00 .*.w............ 038ffebc a0 fe 8f 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 038ffecc 00 00 00 00 dc 01 00 00 - e8 06 00 00 95 2b f8 77 .............+.w 038ffedc 18 36 f8 77 ff ff ff ff - 2c ff 8f 03 82 73 e6 77 .6.w....,....s.w 038ffeec 00 00 07 00 00 00 00 00 - 00 00 00 00 cc 76 f9 7f .............v.. 038ffefc 00 00 00 00 e8 06 00 00 - 20 ff 8f 03 77 2a df 77 ........ ...w*.w 038fff0c d0 fe 8f 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 038fff1c 00 00 00 00 74 ff 8f 03 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 038fff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 038fff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 a1 96 bc 76 .....A.wm1.w...v 038fff4c 58 4c 88 02 98 da 82 02 - 00 00 00 00 82 96 bc 76 XL.............v 038fff5c 00 00 00 00 b4 d0 bc 76 - 1b 1e b1 0c a0 41 c9 77 .......v.....A.w 038fff6c 60 ea 00 00 01 00 00 00 - ac ff 8f 03 fd 8f c5 77 `..............w 038fff7c a0 ff 8f 03 a4 ff 8f 03 - a8 ff 8f 03 9c ff 8f 03 ................ 038fff8c 60 ea 00 00 6c cf dd 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x630 的状态转储 eax=00000000 ebx=00000000 ecx=02be9c28 edx=00000000 esi=0011c9a0 edi=00000000 eip=77df2268 esp=03fcee64 ebp=03fceea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:04b2c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03FCEEA8 76DF217C 00A205DC 03FCFFA4 0286CDB0 00000000 user32!WaitMessage 03FCEF30 76DF1F65 0286CDB0 00000000 00000000 0286CDB0 browseui!Ordinal102 03FCFFAC 76C66950 0286CDB0 77E687DD 0286CDB0 00000000 browseui!Ordinal102 03FCFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 03fcee64 92 23 df 76 a4 ff fc 03 - b0 cd 86 02 00 00 00 00 .#.v............ 03fcee74 e2 05 64 00 02 80 00 00 - 00 00 00 00 00 00 00 00 ..d............. 03fcee84 28 29 b1 0c d5 03 00 00 - b1 02 00 00 98 52 07 00 ()...........R.. 03fcee94 01 00 00 00 a0 c9 11 00 - 01 44 00 80 b0 a3 11 00 .........D...... 03fceea4 00 00 00 00 30 ef fc 03 - 7c 21 df 76 dc 05 a2 00 ....0...|!.v.... 03fceeb4 a4 ff fc 03 b0 cd 86 02 - 00 00 00 00 00 00 00 00 ................ 03fceec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 03fceed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 03fceee4 f4 ee fc 03 a4 ff fc 03 - 00 00 00 00 00 00 00 00 ................ 03fceef4 00 00 00 00 00 00 00 00 - 20 ef fc 03 37 78 e6 77 ........ ...7x.w 03fcef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 03fcef14 ff 02 fa 77 b4 ee fc 03 - 78 dd 06 00 dc ff fc 03 ...w....x....... 03fcef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff fc 03 Rz.vxi.v........ 03fcef34 65 1f df 76 b0 cd 86 02 - 00 00 00 00 00 00 00 00 e..v............ 03fcef44 b0 cd 86 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03fcef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03fcef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03fcef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03fcef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03fcef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x218 的状态转储 eax=02c15000 ebx=00000000 ecx=02c144a8 edx=00000000 esi=00122b58 edi=00000000 eip=77df2268 esp=0449ee64 ebp=0449eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:04ffc437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0449EEA8 76DF217C 00D90594 0449FFA4 027B0D28 00000000 user32!WaitMessage 0449EF30 76DF1F65 027B0D28 00000000 00000000 027B0D28 browseui!Ordinal102 0449FFAC 76C66950 027B0D28 77E687DD 027B0D28 00000000 browseui!Ordinal102 0449FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0449ee64 92 23 df 76 a4 ff 49 04 - 28 0d 7b 02 00 00 00 00 .#.v..I.(.{..... 0449ee74 38 06 8d 00 02 80 00 00 - 00 00 00 00 00 00 00 00 8............... 0449ee84 28 29 b1 0c d5 03 00 00 - b1 02 00 00 98 52 07 00 ()...........R.. 0449ee94 01 00 00 00 58 2b 12 00 - 01 44 00 80 00 b6 09 00 ....X+...D...... 0449eea4 00 00 00 00 30 ef 49 04 - 7c 21 df 76 94 05 d9 00 ....0.I.|!.v.... 0449eeb4 a4 ff 49 04 28 0d 7b 02 - 00 00 00 00 00 00 00 00 ..I.(.{......... 0449eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0449eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0449eee4 f4 ee 49 04 a4 ff 49 04 - 00 00 00 00 00 00 00 00 ..I...I......... 0449eef4 00 00 00 00 00 00 00 00 - 20 ef 49 04 37 78 e6 77 ........ .I.7x.w 0449ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0449ef14 ff 02 fa 77 b4 ee 49 04 - 78 dd 06 00 dc ff 49 04 ...w..I.x.....I. 0449ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 49 04 Rz.vxi.v......I. 0449ef34 65 1f df 76 28 0d 7b 02 - 00 00 00 00 00 00 00 00 e..v(.{......... 0449ef44 28 0d 7b 02 00 00 00 00 - 00 00 00 00 00 00 00 00 (.{............. 0449ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0449ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0449ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0449ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0449ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x544 的状态转储 eax=000000a4 ebx=01aaea50 ecx=00000000 edx=01aaea84 esi=034b0910 edi=046ced60 eip=75ba1a02 esp=046ced34 ebp=046ced38 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: 75ba19e5 832700 and dword ptr [edi],0x0 ds:046ced60=01aaea84 75ba19e8 80a6f9030000ef and byte ptr [esi+0x3f9],0xef ds:034b0d09=0c 75ba19ef e91f9ef0ff jmp 75aab813 75ba19f4 55 push ebp 75ba19f5 8bec mov ebp,esp 75ba19f7 56 push esi 75ba19f8 8b7508 mov esi,[ebp+0x8] ss:0522c30a=???????? 75ba19fb 8b4618 mov eax,[esi+0x18] ds:0400dee2=???????? 75ba19fe 85c0 test eax,eax 75ba1a00 7424 jz CreateHTMLPropertyPage+0x3557e (75baa526) 错误 ->75ba1a02 8b08 mov ecx,[eax] ds:000000a4=???????? 75ba1a04 8d5508 lea edx,[ebp+0x8] ss:0522c30a=???????? 75ba1a07 52 push edx 75ba1a08 68b028a975 push 0x75a928b0 75ba1a0d 50 push eax 75ba1a0e ff11 call dword ptr [ecx] ds:00000000=???????? 75ba1a10 85c0 test eax,eax 75ba1a12 7c12 jl CreateHTMLPropertyPage+0x3557e (75baa526) 75ba1a14 8b4508 mov eax,[ebp+0x8] ss:0522c30a=???????? 75ba1a17 50 push eax 75ba1a18 8b08 mov ecx,[eax] ds:000000a4=???????? 75ba1a1a ff510c call dword ptr [ecx+0xc] ds:00b5d5d2=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 046CED38 75A930D8 034B0910 00000000 00008002 01AAEA50 mshtml!CreateHTMLPropertyPage 046CED6C 75A91A20 046CEE74 046CEE7C C0000000 00000000 mshtml! 046CED8C 77DF1D0A 0080055E 00000281 00000000 00000000 mshtml! 046CEDAC 77DF1BC8 75A918FC 0080055E 00008002 00000000 user32!DispatchMessageW 046CEE38 77DF1CEF 046CEE74 00000000 76DD4C9F 046CEE74 user32!GetAppCompatFlags2 046CEE74 00008002 00000000 00000000 0CB12540 000000BC user32!DispatchMessageW *----> 原始堆栈转储 <----* 046ced34 6c af 13 00 6c ed 6c 04 - d8 30 a9 75 10 09 4b 03 l...l.l..0.u..K. 046ced44 00 00 00 00 02 80 00 00 - 50 ea aa 01 00 00 00 00 ........P....... 046ced54 10 09 4b 03 f4 19 ba 75 - 00 00 00 00 84 ea aa 01 ..K....u........ 046ced64 00 00 00 00 00 00 00 00 - 8c ed 6c 04 20 1a a9 75 ..........l. ..u 046ced74 74 ee 6c 04 7c ee 6c 04 - 00 00 00 c0 00 00 00 00 t.l.|.l......... 046ced84 dc ed 6c 04 00 00 00 00 - ac ed 6c 04 0a 1d df 77 ..l.......l....w 046ced94 5e 05 80 00 81 02 00 00 - 00 00 00 00 00 00 00 00 ^............... 046ceda4 7c ee 6c 04 cd ab ba dc - 38 ee 6c 04 c8 1b df 77 |.l.....8.l....w 046cedb4 fc 18 a9 75 5e 05 80 00 - 02 80 00 00 00 00 00 00 ...u^........... 046cedc4 00 00 00 00 00 00 00 00 - 00 6e 7f 02 00 04 00 00 .........n...... 046cedd4 fc 1f 00 10 80 7c df 77 - 5e 05 80 00 02 80 00 00 .....|.w^....... 046cede4 00 00 00 00 00 00 00 00 - 40 25 b1 0c bc 00 00 00 ........@%...... 046cedf4 4c 01 00 00 03 00 00 00 - ee 20 df 77 74 ee 6c 04 L........ .wt.l. 046cee04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 046cee14 00 00 00 00 00 50 f9 7f - f8 fd 47 00 c8 ed 6c 04 .....P....G...l. 046cee24 80 e9 6c 04 20 ef 6c 04 - 38 27 e4 77 d8 1c df 77 ..l. .l.8'.w...w 046cee34 ff ff ff ff 74 ee 6c 04 - ef 1c df 77 74 ee 6c 04 ....t.l....wt.l. 046cee44 00 00 00 00 9f 4c dd 76 - 74 ee 6c 04 00 00 00 00 .....L.vt.l..... 046cee54 00 6e 7f 02 a8 ee 6c 04 - 00 00 00 00 4b 23 df 76 .n....l.....K#.v 046cee64 74 ee 6c 04 a4 ff 6c 04 - 80 5e 80 02 00 00 00 00 t.l...l..^...... 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1576) 时间: 2003-8-20 @ 22:11:16.796 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 904 Explorer.exe 1020 Rundll32.exe 1028 daemon.exe 1044 ccApp.exe 1092 RealPlay.exe 1108 internat.exe 1008 AcroTray.exe 1412 RUNDLL32.exe 1424 RUNDLL32.exe 276 wuauclt.exe 1380 cthighway.exe 868 conime.exe 1548 XDICT.exe 1576 iexplore.exe 864 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01520000 - 01528000) (01570000 - 01580000) (01690000 - 016AC000) (016B0000 - 016C9000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (74F90000 - 74F97000) (770F0000 - 772ED000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01920000 - 01937000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01FB0000 - 01FCB000) (020E0000 - 020FE000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (68EF0000 - 68F0F000) (02AC0000 - 02C4D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (75010000 - 75020000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (6AC80000 - 6ACBC000) (751C0000 - 751D5000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (76DB0000 - 76DC1000) (6E170000 - 6E18A000) (73800000 - 73824000) (5D300000 - 5D381000) (6F890000 - 6F8A8000) (6A900000 - 6A9EA000) (657F0000 - 65838000) (4AA00000 - 4AA15000) (6CC40000 - 6CC6C000) (6CDF0000 - 6CE56000) (6B080000 - 6B0A9000) (6CE80000 - 6CEAF000) (64260000 - 64288000) (6B6E0000 - 6B709000) 线程 ID 0x2f8 的状态转储 eax=02d51dd8 ebx=00000000 ecx=0000007a edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 050800DA 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 70 01 21 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 p.!............. 0006dd68 1d 6d c0 0c 67 01 00 00 - f9 00 00 00 00 00 00 00 .m..g........... 0006dd78 04 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 da 00 08 05 ........|!.v.... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x470 的状态转储 eax=0007a5dc ebx=80020000 ecx=000aa340 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 787020D9 787025B9 0007E288 00000000 4007DDA4 ntdll!NtReplyWaitReceivePortEx 00BCFFA8 787024DA 0007C0F8 00BCFFEC 77E687DD 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 00BCFFB4 77E687DD 0007E3B8 00000000 4007DDA4 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 00BCFFEC 00000000 787024C2 0007E3B8 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 00bcfe28 85 22 70 78 04 01 00 00 - 54 ff bc 00 00 00 00 00 ."px....T....... 00bcfe38 50 88 c0 04 58 ff bc 00 - 80 c0 07 00 60 e2 07 00 P...X.......`... 00bcfe48 6d 31 f8 77 1f 00 00 00 - 90 95 89 81 90 95 89 81 m1.w............ 00bcfe58 00 00 00 00 01 00 00 00 - b4 2b 41 bc 00 00 00 00 .........+A..... 00bcfe68 78 da 00 00 78 2b 41 bc - 00 00 00 00 72 4f 41 80 x...x+A.....rOA. 00bcfe78 b0 96 89 81 60 57 89 81 - 68 2c 41 bc e8 20 00 00 ....`W..h,A.. .. 00bcfe88 04 00 00 00 c8 04 29 81 - 66 41 4a 80 80 f3 06 00 ......).fAJ..... 00bcfe98 00 00 00 00 48 f3 06 00 - 7e 2a 2b 01 00 00 00 00 ....H...~*+..... 00bcfea8 00 00 00 00 01 00 00 00 - 19 00 02 00 00 00 00 00 ................ 00bcfeb8 19 00 02 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfec8 28 06 00 00 00 00 00 00 - 0c 2c 41 bc 00 00 00 00 (........,A..... 00bcfed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcff08 00 00 00 00 a8 28 50 c0 - ef 00 00 00 00 20 50 c0 .....(P...... P. 00bcff18 19 00 02 00 06 00 02 00 - ef 00 00 00 01 00 00 00 ................ 00bcff28 00 20 50 c0 60 ed 16 81 - 80 35 1d 81 00 00 00 00 . P.`....5...... 00bcff38 80 35 1d 81 10 37 1d 81 - 64 2c 41 bc f3 da 42 80 .5...7..d,A...B. 00bcff48 a4 da 42 80 d4 4b 06 80 - e0 36 1d 81 00 00 02 80 ..B..K...6...... 00bcff58 00 a2 2f 4d ff ff ff ff - 50 fe bc 00 00 00 02 80 ../M....P....... 线程 ID 0x608 的状态转储 eax=00000000 ebx=77f8377b ecx=00000000 edx=00000000 esi=00000000 edi=00000001 eip=77f83786 esp=0179facc ebp=0179fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:022fd09f=00000000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0179FB04 74F57EE6 0000022C 000008D0 00000001 00000004 ntdll!NtWaitForSingleObject 0179FBF0 74FB1DA9 00000005 0179FE84 0179FC7C 0179FD80 msafd!WSPSetSockOpt 0179FC54 76BD6F2E 00000005 0179FE84 0179FC7C 0179FD80 ws2_32!select 0179FFB0 76BD6E24 77E687DD 000A2BE8 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0179FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0179facc 62 bb f5 74 2c 02 00 00 - 01 00 00 00 f0 fa 79 01 b..t,.........y. 0179fadc 84 fe 79 01 50 af e2 04 - 40 af e2 04 98 00 00 00 ..y.P...@....... 0179faec 00 00 00 00 c0 b4 b3 ff - ff ff ff ff 28 68 0a 00 ............(h.. 0179fafc 00 00 00 00 00 00 00 00 - f0 fb 79 01 e6 7e f5 74 ..........y..~.t 0179fb0c 2c 02 00 00 d0 08 00 00 - 01 00 00 00 04 00 00 00 ,............... 0179fb1c 80 fd 79 01 d8 ef dc 04 - 7c fc 79 01 c0 25 b6 ff ..y.....|.y..%.. 0179fb2c ff ff ff ff 80 65 f9 4e - ff ff ff ff 30 02 00 00 .....e.N....0... 0179fb3c 2c 02 00 00 00 00 00 00 - 00 00 07 00 90 fb 79 01 ,.............y. 0179fb4c 17 20 01 00 80 fb 79 01 - 10 00 00 00 00 00 00 00 . ....y......... 0179fb5c 06 00 00 00 c0 25 b6 ff - ff ff ff ff 00 00 00 00 .....%.......... 0179fb6c ff ff ff ff 01 00 00 00 - 28 68 0a 00 2c 02 00 00 ........(h..,... 0179fb7c a8 19 6c 02 30 00 00 00 - 01 00 00 00 a0 41 c9 77 ..l.0........A.w 0179fb8c a0 41 c9 77 dc fb 79 01 - 95 2b f8 77 08 36 f8 77 .A.w..y..+.w.6.w 0179fb9c ff ff ff ff ec fb 79 01 - 1e 73 e6 77 00 00 07 00 ......y..s.w.... 0179fbac 28 68 0a 00 24 00 00 00 - 04 00 00 00 40 af e2 04 (h..$.......@... 0179fbbc 8c 00 00 00 09 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0179fbcc 00 00 00 00 1c 00 00 00 - bc af e2 04 1c fb 79 01 ..............y. 0179fbdc 24 fc 79 01 44 fc 79 01 - 36 df f5 74 78 30 f5 74 $.y.D.y.6..tx0.t 0179fbec ff ff ff ff 54 fc 79 01 - a9 1d fb 74 05 00 00 00 ....T.y....t.... 0179fbfc 84 fe 79 01 7c fc 79 01 - 80 fd 79 01 90 ff 79 01 ..y.|.y...y...y. 线程 ID 0x1c8 的状态转储 eax=00000003 ebx=00000004 ecx=00000101 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=0181fd24 ebp=0181fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0237d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0181FD70 77E6A31D 0181FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0181FFB4 77E687DD 00000005 000A43C4 7FFDB000 000A5E30 kernel32!WaitForMultipleObjects 0181FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x630 的状态转储 eax=000006ae ebx=80020000 ecx=001355b0 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0186fe28 ebp=0186ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:023cd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0186FF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0186FFA8 787024DA 0007C0F8 0186FFEC 77E687DD 000A6AB0 rpcrt4!NdrConformantArrayMemorySize 0186FFB4 77E687DD 000A6AB0 00000000 00000000 000A6AB0 rpcrt4!NdrConformantArrayMemorySize 0186FFEC 00000000 787024C2 000A6AB0 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0186fe28 85 22 70 78 04 01 00 00 - 54 ff 86 01 00 00 00 00 ."px....T....... 0186fe38 08 70 73 02 58 ff 86 01 - 80 c0 07 00 88 6a 0a 00 .ps.X........j.. 0186fe48 6d 31 f8 77 01 42 f9 7f - 28 00 40 00 00 00 00 00 m1.w.B..(.@..... 0186fe58 0c 06 00 00 bc 04 00 00 - 00 00 00 00 00 00 00 00 ................ 0186fe68 04 00 00 00 40 09 00 00 - a5 1b 00 00 03 16 01 00 ....@........... 0186fe78 00 00 00 00 01 00 00 00 - 00 00 00 00 e6 20 00 00 ............. .. 0186fe88 08 01 01 80 38 2c c4 bb - c8 d4 44 80 00 40 f9 7f ....8,....D..@.. 0186fe98 00 00 00 00 00 00 00 00 - 00 40 f9 7f 28 d4 3d 81 .........@..(.=. 0186fea8 01 6c 10 81 00 00 00 00 - 50 fe 1f c0 40 e3 1c 81 .l......P...@... 0186feb8 3b 27 43 80 00 00 00 00 - b0 6b 10 81 c4 a1 26 81 ;'C......k....&. 0186fec8 00 91 4a 80 00 00 00 00 - b0 a1 26 81 e8 2b c4 bb ..J.......&..+.. 0186fed8 cb fa 42 80 60 6b 10 81 - 60 6b 10 81 1b 91 4a 80 ..B.`k..`k....J. 0186fee8 79 d0 52 80 00 40 f9 7f - 70 2c c4 bb 4d d5 52 80 y.R..@..p,..M.R. 0186fef8 01 00 00 00 a0 80 16 81 - 01 00 00 00 50 3a 72 81 ............P:r. 0186ff08 60 bd 5a 81 60 6b 10 81 - f0 62 7a e2 1b 55 45 80 `.Z.`k...bz..UE. 0186ff18 00 00 00 82 00 00 00 02 - 64 2c c4 bb 04 22 49 80 ........d,..."I. 0186ff28 88 9c 89 81 60 ed 16 81 - 80 12 29 81 00 00 00 00 ....`.....)..... 0186ff38 80 12 29 81 10 14 29 81 - 64 2c c4 bb f3 da 42 80 ..)...).d,....B. 0186ff48 a4 da 42 80 d4 4b 06 80 - e0 13 29 81 00 00 02 80 ..B..K....)..... 0186ff58 00 a2 2f 4d ff ff ff ff - 50 fe 86 01 00 00 02 80 ../M....P....... 线程 ID 0x464 的状态转储 eax=01deff00 ebx=01deff74 ecx=01b81e90 edx=00000000 esi=77f8377b edi=000002f0 eip=77f83786 esp=01deff58 ebp=01deff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0294d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01DEFF7C 77E67837 000002F0 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01deff58 0f 78 e6 77 f0 02 00 00 - 00 00 00 00 74 ff de 01 .x.w........t... 01deff68 00 00 00 00 e0 1e 99 01 - 3c 31 f8 77 00 44 5f 9a ........<1.w.D_. 01deff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 f0 02 00 00 ....m1.w7x.w.... 01deff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 f0 02 00 00 .'......k..u.... 01deff98 c0 27 09 00 88 b0 06 00 - e0 1e 99 01 ec ff de 01 .'.............. 01deffa8 e0 1e 99 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01deffb8 dd 87 e6 77 e0 1e 99 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01deffc8 e0 1e 99 01 00 60 fd 7f - ac 02 00 00 c0 ff de 01 .....`.......... 01deffd8 ac 02 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01deffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01defff8 e0 1e 99 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ........LCDT.... 01df0008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 01df0018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 01df0028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 01df0038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 01df0048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 01df0058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 01df0068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 01df0078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01df0088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x36c 的状态转储 eax=000000c0 ebx=0000003f ecx=023cef50 edx=00000000 esi=023cec00 edi=00000001 eip=77f837b2 esp=023cebe8 ebp=023cffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f2c1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023CFFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 023CFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 023cebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 3c 02 01 00 00 00 ...w......<..... 023cebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 023cec08 58 03 00 00 6c 03 00 00 - 0f 00 00 00 0f 00 00 00 X...l........... 023cec18 5c 03 00 00 2c 03 00 00 - a8 03 00 00 b8 03 00 00 \...,........... 023cec28 cc 03 00 00 ec 03 00 00 - fc 03 00 00 10 04 00 00 ................ 023cec38 28 04 00 00 40 04 00 00 - 50 04 00 00 64 04 00 00 (...@...P...d... 023cec48 78 04 00 00 90 04 00 00 - a0 04 00 00 00 00 00 00 x............... 023cec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023ceca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023ced08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023ced18 00 00 00 00 a0 89 0e 00 - 28 a1 11 00 28 a2 11 00 ........(...(... 线程 ID 0x640 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=0240ff20 ebp=0240ff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f6d4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0240FF6C 77E6A31D 0240FF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects *----> 原始堆栈转储 <----* 0240ff20 b7 7a e6 77 03 00 00 00 - 44 ff 40 02 01 00 00 00 .z.w....D.@..... 0240ff30 00 00 00 00 00 00 00 00 - b0 00 c4 77 00 00 00 00 ...........w.... 0240ff40 f6 76 e6 77 d0 03 00 00 - d4 03 00 00 14 04 00 00 .v.w............ 0240ff50 00 00 00 00 00 00 00 00 - b0 36 07 00 16 00 18 00 .........6...... 0240ff60 24 ed bf 77 00 00 00 00 - 08 ff 40 02 00 00 00 00 $..w......@..... 0240ff70 1d a3 e6 77 44 ff 40 02 - 01 00 00 00 00 00 00 00 ...wD.@......... 0240ff80 00 00 00 00 00 00 00 00 - 2c ec bf 77 03 00 00 00 ........,..w.... 0240ff90 4c 01 c4 77 00 00 00 00 - ff ff ff ff 50 be 06 00 L..w........P... 0240ffa0 e6 7e f8 77 ec ff 40 02 - 00 00 00 00 00 00 00 00 .~.w..@......... 0240ffb0 03 00 00 00 00 00 bf 77 - dd 87 e6 77 00 00 00 00 .......w...w.... 0240ffc0 50 be 06 00 e6 7e f8 77 - 00 00 00 00 00 30 fd 7f P....~.w.....0.. 0240ffd0 00 00 00 00 c0 ff 40 02 - 00 00 00 00 ff ff ff ff ......@......... 0240ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 0240fff0 00 00 00 00 a0 eb bf 77 - 00 00 00 00 00 00 00 00 .......w........ 02410000 4d 5a 90 00 03 00 00 00 - 04 00 00 00 ff ff 00 00 MZ.............. 02410010 b8 00 00 00 00 00 00 00 - 40 00 00 00 00 00 00 00 ........@....... 02410020 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02410030 00 00 00 00 00 00 00 00 - 00 00 00 00 b8 00 00 00 ................ 02410040 0e 1f ba 0e 00 b4 09 cd - 21 b8 01 4c cd 21 54 68 ........!..L.!Th 02410050 69 73 20 70 72 6f 67 72 - 61 6d 20 63 61 6e 6e 6f is program canno 线程 ID 0x4c4 的状态转储 eax=00000400 ebx=0245ff74 ecx=00000299 edx=00000000 esi=77f8377b edi=000004c0 eip=77f83786 esp=0245ff58 ebp=0245ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02fbd52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0245FF7C 77E67837 000004C0 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x4b4 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=02d1ff24 ebp=02d1ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0387d4f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02D1FF70 77E6A31D 02D1FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 02D1FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 02D1FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02d1ff24 b7 7a e6 77 02 00 00 00 - 48 ff d1 02 01 00 00 00 .z.w....H....... 02d1ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 02d1ff44 00 00 00 00 80 05 00 00 - 74 05 00 00 60 45 3d 81 ........t...`E=. 02d1ff54 00 44 3d 81 95 26 40 80 - 88 2c c4 bb ec 12 29 81 .D=..&@..,....). 02d1ff64 74 2c c4 bb 00 00 00 00 - 00 00 00 00 b4 ff d1 02 t,.............. 02d1ff74 1d a3 e6 77 48 ff d1 02 - 01 00 00 00 00 00 00 00 ...wH........... 02d1ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 02d1ff94 a4 ff d1 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 02d1ffa4 80 05 00 00 74 05 00 00 - 00 00 00 00 00 00 00 00 ....t........... 02d1ffb4 ec ff d1 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 02d1ffc4 00 00 00 00 00 00 00 00 - 00 e0 f9 7f 45 00 00 00 ............E... 02d1ffd4 c0 ff d1 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ....E.......V..w 02d1ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02d1fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02d20004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02d20014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02d20024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02d20034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02d20044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02d20054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x528 的状态转储 eax=00000000 ebx=033fff70 ecx=00000000 edx=00000000 esi=77f8377b edi=000005d8 eip=77f83786 esp=033fff54 ebp=033fff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03f5d527=100001ff 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 033FFF78 77E67837 000005D8 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 033fff54 0f 78 e6 77 d8 05 00 00 - 00 00 00 00 70 ff 3f 03 .x.w........p.?. 033fff64 b0 e8 b3 01 40 93 a1 01 - 2d 6d c0 0c f0 d8 ff ff ....@...-m...... 033fff74 ff ff ff ff 01 00 00 00 - 37 78 e6 77 d8 05 00 00 ........7x.w.... 033fff84 01 00 00 00 00 00 00 00 - 04 a1 bd 75 d8 05 00 00 ...........u.... 033fff94 01 00 00 00 40 93 a1 01 - ec ff 3f 03 5d 28 df 77 ....@.....?.](.w 033fffa4 40 93 a1 01 00 00 00 00 - 9a f4 b2 75 dc 01 52 00 @..........u..R. 033fffb4 74 f4 b2 75 dd 87 e6 77 - 40 93 a1 01 5d 28 df 77 t..u...w@...](.w 033fffc4 dc 01 52 00 40 93 a1 01 - 00 c0 f9 7f dc 01 52 00 ..R.@.........R. 033fffd4 c0 ff 3f 03 dc 01 52 00 - ff ff ff ff 56 18 e8 77 ..?...R.....V..w 033fffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 033ffff4 6b f4 b2 75 40 93 a1 01 - 00 00 00 00 00 00 00 00 k..u@........... 03400004 9f 00 13 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ................ 03400014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 03400024 ff ff ff 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03400034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 03400044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 03400054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03400064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 03400074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03400084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x32c 的状态转储 eax=00000012 ebx=00000640 ecx=04dbfee0 edx=00000000 esi=0349ff98 edi=77df7c12 eip=77df1d6b esp=0349ff58 ebp=0349ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03ffd52b=0000fc00 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03ffd52b=0000fc00 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03ffd52b=0000fc00 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0349FF78 77535C36 0349FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0349FFB4 77E687DD 00000640 77555428 000691BC 00000640 winmm!midiOutGetNumDevs 0349FFEC 00000000 77535BB9 00000640 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0349ff58 4e 7c df 77 98 ff 49 03 - 00 00 00 00 00 00 00 00 N|.w..I......... 0349ff68 00 00 00 00 40 06 00 00 - 00 00 00 00 12 7c df 77 ....@........|.w 0349ff78 b4 ff 49 03 36 5c 53 77 - 98 ff 49 03 00 00 00 00 ..I.6\Sw..I..... 0349ff88 00 00 00 00 00 00 00 00 - 28 54 55 77 bc 91 06 00 ........(TUw.... 0349ff98 2c 05 be 00 bc 03 00 00 - 54 e4 d5 04 00 00 00 00 ,.......T....... 0349ffa8 79 9d bf 0c bf 03 00 00 - c3 01 00 00 ec ff 49 03 y.............I. 0349ffb8 dd 87 e6 77 40 06 00 00 - 28 54 55 77 bc 91 06 00 ...w@...(TUw.... 0349ffc8 40 06 00 00 00 b0 f9 7f - 00 00 53 77 c0 ff 49 03 @.........Sw..I. 0349ffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 0349ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 0349fff8 40 06 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 @............... 034a0008 07 00 00 00 1e 00 00 00 - 01 00 00 00 ee 03 00 00 ................ 034a0018 c9 03 00 00 d0 00 00 00 - 11 00 00 00 09 00 00 00 ................ 034a0028 30 0e 4a 03 30 00 4a 03 - 00 00 00 00 00 00 00 00 0.J.0.J......... 034a0038 00 00 00 00 00 00 00 00 - 00 00 00 00 20 a8 e2 04 ............ ... 034a0048 68 16 d5 04 00 00 00 00 - 00 00 00 00 00 00 00 00 h............... 034a0058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 034a0068 00 00 00 00 00 00 00 00 - b8 97 db 04 00 00 00 00 ................ 034a0078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 034a0088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x64c 的状态转储 eax=0557fe50 ebx=80020000 ecx=0007a4b8 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0557fe28 ebp=0557ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:060dd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0557FF74 787020D9 787025B9 0007E288 00BCFA9C 00000022 ntdll!NtReplyWaitReceivePortEx 0557FFA8 787024DA 0007C0F8 0557FFEC 77E687DD 03686130 rpcrt4!NdrConformantArrayMemorySize 0557FFB4 77E687DD 03686130 00BCFA9C 00000022 03686130 rpcrt4!NdrConformantArrayMemorySize 0557FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x554 的状态转储 eax=00000000 ebx=0271bfa8 ecx=00000026 edx=00000000 esi=00000000 edi=00000000 eip=77dfa70d esp=05583000 ebp=c601086d iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246 函数: WindowFromDC 错误 ->77dfa70d 6a17 push 0x17 77dfa70f ff742408 push dword ptr [esp+0x8] ss:060e05d3=???????? 77dfa713 e8f26dffff call ScrollDC+0x5a (77df150a) 77dfa718 c20400 ret 0x4 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name C601086D 00000000 00000000 00000000 00000000 00000000 user32!WindowFromDC *----> 原始堆栈转储 <----* 05583000 32 3d f0 37 6d 08 01 c6 - 00 00 00 00 6d 08 01 c6 2=.7m.......m... 05583010 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05583020 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05583030 02 00 00 00 36 3f f0 37 - 6d 08 01 c6 08 00 00 00 ....6?.7m....... 05583040 00 00 00 00 26 00 00 00 - 16 00 00 00 48 0a 01 27 ....&.......H..' 05583050 00 00 00 00 c6 00 00 00 - 20 00 cc 00 00 00 00 00 ........ ....... 05583060 6d 08 01 c6 00 00 00 00 - 00 00 00 00 00 00 00 00 m............... 05583070 00 00 00 00 00 00 00 00 - 00 00 00 00 c6 00 00 00 ................ 05583080 26 00 00 00 dc 00 00 00 - 36 3f f0 37 00 00 00 00 &.......6?.7.... 05583090 08 00 00 00 00 00 00 00 - 26 00 00 00 16 00 00 00 ........&....... 055830a0 48 0a 01 27 00 00 00 00 - c6 00 00 00 20 00 cc 00 H..'........ ... 055830b0 00 00 00 00 6d 08 01 c6 - 00 00 00 00 00 00 00 00 ....m........... 055830c0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 055830d0 c6 00 00 00 26 00 00 00 - dc 00 00 00 36 3f f0 37 ....&.......6?.7 055830e0 00 00 00 00 08 00 00 00 - 00 00 00 00 26 00 00 00 ............&... 055830f0 16 00 00 00 48 0a 01 27 - 00 00 00 00 c6 00 00 00 ....H..'........ 05583100 20 00 cc 00 00 00 00 00 - 6d 08 01 c6 00 00 00 00 .......m....... 05583110 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05583120 00 00 00 00 c6 00 00 00 - 26 00 00 00 dc 00 00 00 ........&....... 05583130 36 3f f0 37 00 00 00 00 - 08 00 00 00 00 00 00 00 6?.7............ 线程 ID 0x5b4 的状态转储 eax=00000000 ebx=00000002 ecx=01010101 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0589fe5c ebp=0589fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:063fd42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0589FEA8 77DF2A00 0589FE80 00000001 00000000 0589FEA0 ntdll!NtWaitForMultipleObjects 0589FF04 77DF2A77 0589FED0 77C941C0 0000E2A0 00000041 user32!MsgWaitForMultipleObjectsEx 0589FF20 77C564FF 00000001 77C941C0 00000000 0000E2A0 user32!MsgWaitForMultipleObjects 0589FF74 77C58FFD 0589FFA0 0589FFA4 0589FFA8 0589FF9C shlwapi!Ordinal271 0589FFAC 77C58F85 77F82B95 77E687DD 00000000 0179FA10 shlwapi!Ordinal394 0589FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x544 的状态转储 eax=00000000 ebx=027b5c58 ecx=00000000 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=066bff84 ebp=066bffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:0721d557=???????? 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:0721d557=???????? 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:0721d557=???????? 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:0721d557=???????? 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 066BFFB4 77E687DD 74F55F4B 7FF99000 00000000 027B5C58 ntdll!ZwRemoveIoCompletion 066BFFEC 00000000 74F54766 027B5C58 00000000 0CB30000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 066bff84 b8 47 f5 74 dc 02 00 00 - bc ff 6b 06 b0 ff 6b 06 .G.t......k...k. 066bff94 a4 ff 6b 06 28 2c f5 74 - 00 90 f9 7f 00 00 00 00 ..k.(,.t........ 066bffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 e8 28 d3 04 ...........t.(.. 066bffb4 ec ff 6b 06 dd 87 e6 77 - 4b 5f f5 74 00 90 f9 7f ..k....wK_.t.... 066bffc4 00 00 00 00 58 5c 7b 02 - 00 80 fd 7f 64 f7 89 05 ....X\{.....d... 066bffd4 c0 ff 6b 06 64 f7 89 05 - ff ff ff ff 56 18 e8 77 ..k.d.......V..w 066bffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 066bfff4 66 47 f5 74 58 5c 7b 02 - 00 00 00 00 00 00 b3 0c fG.tX\{......... 066c0004 00 00 88 03 00 00 00 00 - 00 00 00 00 00 20 26 00 ............. &. 066c0014 00 20 26 00 58 0e 00 00 - 00 0b 00 00 00 00 00 00 . &.X........... 066c0024 08 00 00 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c0034 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c0044 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c0054 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c0064 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c0074 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c0084 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c0094 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c00a4 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 066c00b4 ff ff ff 00 ff ff ff 00 - ff ff ff 00 ff ff ff 00 ................ 线程 ID 0x84 的状态转储 eax=04c519bc ebx=00000002 ecx=04b4e85c edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=069afe5c ebp=069afea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0750d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 069AFEA8 77DF2A00 069AFE80 00000001 00000000 069AFEA0 ntdll!NtWaitForMultipleObjects 069AFF04 77DF2A77 069AFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 069AFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 069AFF74 77C58FFD 069AFFA0 069AFFA4 069AFFA8 069AFF9C shlwapi!Ordinal271 069AFFAC 77C58F85 00000000 77E687DD 00000000 00000000 shlwapi!Ordinal394 069AFFEC 00000000 77C58F5C 00000000 00000000 FF000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 069afe5c b7 7a e6 77 02 00 00 00 - 80 fe 9a 06 01 00 00 00 .z.w............ 069afe6c 00 00 00 00 a0 fe 9a 06 - 00 00 00 00 00 00 00 00 ................ 069afe7c 02 00 00 00 dc 01 00 00 - c0 05 00 00 00 00 00 00 ................ 069afe8c e8 2b 0a 00 b8 58 14 00 - 76 f8 bc 76 38 1d be 04 .+...X..v..v8... 069afe9c b8 19 c5 04 00 ba 3c dc - ff ff ff ff 04 ff 9a 06 ......<......... 069afeac 00 2a df 77 80 fe 9a 06 - 01 00 00 00 00 00 00 00 .*.w............ 069afebc a0 fe 9a 06 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 069afecc 00 00 00 00 dc 01 00 00 - c0 05 00 00 58 90 bc 76 ............X..v 069afedc 00 00 00 00 00 00 00 00 - 0f ee bc 76 b8 58 14 00 ...........v.X.. 069afeec 00 00 00 00 00 00 00 00 - 00 00 00 00 cc b6 fd 7f ................ 069afefc 00 00 00 00 c0 05 00 00 - 20 ff 9a 06 77 2a df 77 ........ ...w*.w 069aff0c d0 fe 9a 06 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 069aff1c 00 00 00 00 74 ff 9a 06 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 069aff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 069aff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 e8 5a db 04 .....A.wm1.w.Z.. 069aff4c b8 58 14 00 e8 5a db 04 - 00 00 00 00 49 d0 bc 76 .X...Z......I..v 069aff5c b8 58 14 00 8c ff 9a 06 - 2d 6d c0 0c a0 41 c9 77 .X......-m...A.w 069aff6c 60 ea 00 00 01 00 00 00 - ac ff 9a 06 fd 8f c5 77 `..............w 069aff7c a0 ff 9a 06 a4 ff 9a 06 - a8 ff 9a 06 9c ff 9a 06 ................ 069aff8c 60 ea 00 00 00 00 00 00 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x30c 的状态转储 eax=00000000 ebx=00000102 ecx=77b13600 edx=00000000 esi=77f8318c edi=06abff74 eip=77f83197 esp=06abff60 ebp=06abff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0761d533=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06ABFF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x5e8 的状态转储 eax=00000000 ebx=00000000 ecx=01bcf250 edx=00000000 esi=00122d60 edi=00000000 eip=77df2268 esp=06b6ee64 ebp=06b6eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:076cc437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06B6EEA8 76DF217C 009D0692 06B6FFA4 04C68AC8 00000000 user32!WaitMessage 06B6EF30 76DF1F65 04C68AC8 00070718 00000000 04C68AC8 browseui!Ordinal102 06B6FFAC 76C66950 04C68AC8 77E687DD 04C68AC8 00070718 browseui!Ordinal102 06B6FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 06b6ee64 92 23 df 76 a4 ff b6 06 - c8 8a c6 04 00 00 00 00 .#.v............ 06b6ee74 3a 06 88 00 13 01 00 00 - 05 36 00 00 00 00 00 00 :........6...... 06b6ee84 2d 6d c0 0c 67 01 00 00 - f9 00 00 00 98 52 07 00 -m..g........R.. 06b6ee94 01 00 00 00 60 2d 12 00 - 01 44 00 80 c0 9f 59 03 ....`-...D....Y. 06b6eea4 00 00 00 00 30 ef b6 06 - 7c 21 df 76 92 06 9d 00 ....0...|!.v.... 06b6eeb4 a4 ff b6 06 c8 8a c6 04 - 00 00 00 00 00 00 00 00 ................ 06b6eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 06b6eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 06b6eee4 f4 ee b6 06 a4 ff b6 06 - 00 00 00 00 00 00 00 00 ................ 06b6eef4 00 00 00 00 00 00 00 00 - 20 ef b6 06 37 78 e6 77 ........ ...7x.w 06b6ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 06b6ef14 ff 02 fa 77 b4 ee b6 06 - 78 dd 06 00 dc ff b6 06 ...w....x....... 06b6ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff b6 06 Rz.vxi.v........ 06b6ef34 65 1f df 76 c8 8a c6 04 - 18 07 07 00 00 00 00 00 e..v............ 06b6ef44 c8 8a c6 04 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06b6ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06b6ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06b6ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06b6ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06b6ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x504 的状态转储 eax=00000001 ebx=00000000 ecx=070054e0 edx=00000000 esi=077aff94 edi=77df7c12 eip=77df1d6b esp=077aff50 ebp=077aff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0830d523=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0830d523=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0830d523=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 077AFF70 6A92E75C 077AFF94 00000000 00000000 00000000 user32!TranslateMessageEx 077AFFB4 77E687DD 00000930 06B6A127 06B69FE8 00000930 msjava!DllGetClassObject 077AFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x4cc 的状态转储 eax=00000001 ebx=00000000 ecx=6a9dc368 edx=00000000 esi=77f8377b edi=000009a8 eip=77f83786 esp=0a24ff44 ebp=0a24ff68 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0adad517=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0A24FF68 77E67837 000009A8 FFFFFFFF 00000000 6A92FC30 ntdll!NtWaitForSingleObject 77E67828 74FF0C24 7EE80C24 C2FFFFFF 74FF0008 15FF0424 kernel32!WaitForSingleObject 74FF006A 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 0a24ff44 0f 78 e6 77 a8 09 00 00 - 00 00 00 00 00 00 00 00 .x.w............ 0a24ff54 00 00 00 00 98 65 02 07 - 47 77 e6 77 a8 09 00 00 .....e..Gw.w.... 0a24ff64 a8 09 00 00 28 78 e6 77 - 37 78 e6 77 a8 09 00 00 ....(x.w7x.w.... 0a24ff74 ff ff ff ff 00 00 00 00 - 30 fc 92 6a a8 09 00 00 ........0..j.... 0a24ff84 ff ff ff ff 00 00 00 00 - ec ff 24 0a 98 65 02 07 ..........$..e.. 0a24ff94 98 65 02 07 f0 fb 92 6a - 98 65 02 07 a0 a0 b6 06 .e.....j.e...... 0a24ffa4 48 4d 81 07 00 00 00 00 - 00 00 00 00 00 00 00 00 HM.............. 0a24ffb4 a4 67 f8 77 dd 87 e6 77 - 00 00 00 00 a0 a0 b6 06 .g.w...w........ 0a24ffc4 48 4d 81 07 00 00 00 00 - 00 70 f9 7f b6 02 36 07 HM.......p....6. 0a24ffd4 c0 ff 24 0a b6 02 36 07 - ff ff ff ff 56 18 e8 77 ..$...6.....V..w 0a24ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0a24fff4 a6 fb 92 6a 00 00 00 00 - 00 00 00 00 00 00 00 00 ...j............ 0a250004 29 00 00 00 00 00 00 00 - 40 82 03 07 2c 00 25 0a ).......@...,.%. 0a250014 04 81 27 0a 3e 04 00 00 - 3e 04 00 00 00 00 25 0a ..'.>...>.....%. 0a250024 08 00 75 0a 3e 04 00 00 - 29 00 00 00 50 40 76 0a ..u.>...)...P@v. 0a250034 00 00 00 00 68 55 81 07 - ff 74 24 04 ff 15 50 7d ....hU...t$...P} 0a250044 03 07 c2 04 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0a250054 29 00 00 00 68 40 76 0a - 00 00 00 00 a0 56 81 07 )...h@v......V.. 0a250064 ff 74 24 04 ff 15 f0 7c - 03 07 c2 04 00 00 00 00 .t$....|........ 0a250074 00 00 00 00 00 00 00 00 - 29 00 00 00 80 40 76 0a ........)....@v. 线程 ID 0x2d4 的状态转储 eax=00000000 ebx=00000001 ecx=28010101 edx=00000000 esi=77f837a7 edi=00000001 eip=77f837b2 esp=0afdfd10 ebp=0afdfd5c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0bb3d2e3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0AFDFD5C 6A9016C0 0AFDFD34 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 msjava!GCEnable 线程 ID 0x574 的状态转储 eax=0704ec70 ebx=0704e888 ecx=0704f2d0 edx=00000000 esi=0b01fda4 edi=00000000 eip=77df1d6b esp=0b01fd64 ebp=0b01fd84 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0bb7d337=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0bb7d337=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0bb7d337=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0B01FD84 6B086A5E 0B01FDA4 00000000 00000000 00000000 user32!TranslateMessageEx 0B01FDC0 6B086987 00000002 0704E488 0704E75C 80004005 msawt!com_ms_awt_WToolkit_createNativeToolkit 0B01FDD8 6A91E64C 04B4ECC0 0704E888 0B01FEA4 6A91E50F msawt!com_ms_awt_WToolkit_createNativeToolkit 0B01FDE8 6A91E50F 6B086942 0B01FE04 00000002 04B4ECC0 msjava!convert_Java_Object_to_IUnknown 0B01FEA4 07261525 0B01FEC8 00000001 00000000 0704E48C msjava!convert_Java_Object_to_IUnknown 0B01FEC8 FFFFFFFF 0704E75C 0A25E1D7 0824CE30 0824CE48 00000003 00000000 00000000 00000000 00000000 00000000 线程 ID 0x3c8 的状态转储 eax=00000000 ebx=00000001 ecx=04c555c4 edx=00000000 esi=77f837a7 edi=00000001 eip=77f837b2 esp=0c95fd58 ebp=0c95fda4 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0d4bd32b=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0C95FDA4 6A9016C0 0C95FD7C 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 msjava!GCEnable *----> 原始堆栈转储 <----* 0c95fd58 b7 7a e6 77 01 00 00 00 - 7c fd 95 0c 01 00 00 00 .z.w....|....... 0c95fd68 01 00 00 00 00 00 00 00 - 00 00 00 00 ff ff ff ff ................ 0c95fd78 00 00 00 00 84 08 00 00 - 84 fe 95 0c 18 93 87 07 ................ 0c95fd88 e0 8b c6 6c dc fd 95 0c - ff ff ff ff 00 00 00 00 ...l............ 0c95fd98 44 fd 95 0c ec fd 95 0c - ff ff ff ff 00 00 00 00 D............... 0c95fda8 c0 16 90 6a 7c fd 95 0c - 01 00 00 00 00 00 00 00 ...j|........... 0c95fdb8 00 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0c95fdc8 01 00 00 00 ff ff ff ff - 01 00 00 00 00 fe 95 0c ................ 0c95fdd8 00 00 00 00 a8 a5 05 07 - 00 00 00 00 48 4a 00 07 ............HJ.. 0c95fde8 00 00 00 00 60 b1 c4 6c - 00 00 00 00 af 17 90 6a ....`..l.......j 0c95fdf8 e0 a5 05 07 01 00 00 00 - ff ff ff ff 01 00 00 00 ................ 0c95fe08 00 00 00 00 e0 a5 05 07 - a8 a5 05 07 01 00 00 00 ................ 0c95fe18 01 00 00 00 00 00 00 00 - a8 a5 05 07 00 00 00 00 ................ 0c95fe28 01 49 90 6a 37 77 93 6a - e0 a5 05 07 01 00 00 00 .I.j7w.j........ 0c95fe38 00 00 00 00 00 00 00 00 - a8 a5 05 07 bc ab 03 07 ................ 0c95fe48 7c 76 93 6a 00 00 00 00 - 00 00 00 00 ff ff ff ff |v.j............ 0c95fe58 bc ab 03 07 ac fe 95 0c - 40 ff 95 0c 35 76 93 6a ........@...5v.j 0c95fe68 00 00 00 00 00 00 00 00 - a8 a5 05 07 00 76 93 6a .............v.j 0c95fe78 00 00 00 00 00 00 00 00 - 79 13 26 07 80 5c 26 08 ........y.&..\&. 0c95fe88 00 00 00 00 00 00 00 00 - ff ff ff ff 35 f0 9c 6a ............5..j 线程 ID 0x3d0 的状态转储 eax=00000001 ebx=00000001 ecx=0a26fc1c edx=00000000 esi=77f837a7 edi=00000001 eip=77f837b2 esp=0c9dfd34 ebp=0c9dfd80 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0d53d307=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0C9DFD80 6A9016C0 0C9DFD58 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 msjava!GCEnable *----> 原始堆栈转储 <----* 0c9dfd34 b7 7a e6 77 01 00 00 00 - 58 fd 9d 0c 01 00 00 00 .z.w....X....... 0c9dfd44 01 00 00 00 00 00 00 00 - 00 00 00 00 ff ff ff ff ................ 0c9dfd54 00 00 00 00 40 0b 00 00 - 18 c6 24 08 01 00 00 00 ....@.....$..... 0c9dfd64 b0 dd 27 08 50 c6 27 08 - 18 c6 24 08 0c fe 9d 0c ..'.P.'...$..... 0c9dfd74 98 ce 25 0a b0 dd 27 08 - 58 c6 24 08 00 00 00 00 ..%...'.X.$..... 0c9dfd84 c0 16 90 6a 58 fd 9d 0c - 01 00 00 00 00 00 00 00 ...jX........... 0c9dfd94 00 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0c9dfda4 01 00 00 00 ff ff ff ff - 01 00 00 00 ac 26 00 07 .............&.. 0c9dfdb4 00 00 00 00 a8 26 00 07 - 00 00 00 00 48 4a 00 07 .....&......HJ.. 0c9dfdc4 00 00 00 00 23 00 00 00 - 00 00 00 00 af 17 90 6a ....#..........j 0c9dfdd4 e0 26 00 07 01 00 00 00 - ff ff ff ff 01 00 00 00 .&.............. 0c9dfde4 00 00 00 00 e0 26 00 07 - a8 26 00 07 01 00 00 00 .....&...&...... 0c9dfdf4 01 00 00 00 00 00 00 00 - a8 26 00 07 00 00 00 00 .........&...... 0c9dfe04 2c fe 9d 0c 37 77 93 6a - e0 26 00 07 01 00 00 00 ,...7w.j.&...... 0c9dfe14 00 00 00 00 00 00 00 00 - a8 26 00 07 2c a8 03 07 .........&..,... 0c9dfe24 7c 76 93 6a 00 00 00 00 - 00 00 00 00 ff ff ff ff |v.j............ 0c9dfe34 2c a8 03 07 88 fe 9d 0c - 40 ff 9d 0c 35 76 93 6a ,.......@...5v.j 0c9dfe44 00 00 00 00 00 00 00 00 - a8 26 00 07 00 76 93 6a .........&...v.j 0c9dfe54 00 00 00 00 00 00 00 00 - 79 13 26 07 d0 5f 26 08 ........y.&.._&. 0c9dfe64 00 00 00 00 00 00 00 00 - ff ff ff ff 35 f0 9c 6a ............5..j 线程 ID 0x644 的状态转储 eax=00000020 ebx=00000000 ecx=00000008 edx=00000000 esi=77f8318c edi=0cadfdcc eip=77f83197 esp=0cadfdb8 ebp=0cadfdd4 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0d63d38b=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0CADFDD4 6A90171F 0000005A 00000001 000000F7 0000005A ntdll!NtDelayExecution 1FB1EEBC 00000000 00000000 00000000 00000000 00000000 msjava!GCEnable *----> 原始堆栈转储 <----* 0cadfdb8 17 76 e6 77 01 00 00 00 - cc fd ad 0c 00 00 00 00 .v.w............ 0cadfdc8 5a 00 00 00 60 44 f2 ff - ff ff ff ff bc ee b1 1f Z...`D.......... 0cadfdd8 1f 17 90 6a 5a 00 00 00 - 01 00 00 00 f7 00 00 00 ...jZ........... 0cadfde8 5a 00 00 00 00 00 00 00 - 5a 00 00 00 01 00 00 00 Z.......Z....... 0cadfdf8 00 00 00 00 00 00 00 00 - b8 bb 05 07 00 00 00 00 ................ 0cadfe08 48 4a 00 07 00 00 00 00 - 43 14 90 6a f7 00 00 00 HJ......C..j.... 0cadfe18 af 17 90 6a 00 00 00 00 - 00 00 00 00 5a 00 00 00 ...j........Z... 0cadfe28 01 00 00 00 00 00 00 00 - 00 00 00 00 b8 bb 05 07 ................ 0cadfe38 01 00 00 00 bc bb 05 07 - 00 00 00 00 b8 bb 05 07 ................ 0cadfe48 16 ef b1 1f b8 bb 05 07 - 7b 18 90 6a 00 00 00 00 ........{..j.... 0cadfe58 00 00 00 00 5a 00 00 00 - 00 00 00 00 ff ff ff ff ....Z........... 0cadfe68 b8 bb 05 07 a0 fe ad 0c - 40 ff ad 0c 98 18 26 07 ........@.....&. 0cadfe78 00 00 00 00 5a 00 00 00 - 00 00 00 00 ff ff ff ff ....Z........... 0cadfe88 35 f0 9c 6a 00 00 00 00 - 77 01 00 00 1b 00 00 00 5..j....w....... 0cadfe98 ff ff ff ff dc fe ad 0c - 03 00 00 00 ff ff ff ff ................ 0cadfea8 48 32 82 07 bc 7d 27 0a - 5a 00 00 00 00 00 00 00 H2...}'.Z....... 0cadfeb8 bc bb 05 07 04 00 00 00 - f0 fe ad 0c 2c 01 00 00 ............,... 0cadfec8 1a 00 00 00 0b 00 00 00 - 58 02 00 00 00 00 00 00 ........X....... 0cadfed8 f8 f8 24 08 50 ff ad 0c - 02 bd 25 0a 28 80 26 08 ..$.P.....%.(.&. 0cadfee8 3d 27 90 6a c0 87 26 08 - 08 bc 05 07 b8 bb 05 07 ='.j..&......... 线程 ID 0x550 的状态转储 eax=0ce2e908 ebx=00000000 ecx=bc5e16f4 edx=bc5e1d64 esi=76e4b1d8 edi=00000000 eip=77f83786 esp=0ce2eb58 ebp=0ce2ebc8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0001 es=74b0 fs=0038 gs=da0b efl=00000202 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0d98c12b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0CE2EBC8 77F85BD1 76E4B100 76DDE54A 76E4B1D8 0095063E ntdll!NtWaitForSingleObject 0CE2EC28 76DDD5E7 37010762 0095063E 0014B2F0 37010762 ntdll!RtlIntegerToUnicodeString 0CE2EC8C 77DF1D0A 0095063E 0000000F 00000000 00000000 browseui!DllGetClassObject 0CE2ECAC 77DF2BCC 76DDD521 0095063E 0000000F 00000000 user32!DispatchMessageW 0CE2ECC8 77DF2B84 004965F8 0000000F 00000000 00000000 user32!MsgWaitForMultipleObjects 0CE2ECF0 77FA02FF 0CE2ED00 00000018 004965F8 0000000F user32!MsgWaitForMultipleObjects 0CE2ED8C 77DF1D0A 0095063E 00000113 0000162E 00000000 ntdll!KiUserCallbackDispatcher 0CE2EDAC 77DF1BC8 76DDD521 0095063E 00000113 0000162E user32!DispatchMessageW 0CE2EE38 77DF1CEF 0CE2EE74 00000000 76DD4C9F 0CE2EE74 user32!GetAppCompatFlags2 0CE2EE74 00000113 0000162E 00000000 0CC064FF 0000030D user32!DispatchMessageW *----> 原始堆栈转储 <----* 0ce2eb58 55 5c f8 77 60 08 00 00 - 00 00 00 00 00 00 00 00 U\.w`........... 0ce2eb68 00 00 00 00 d8 b1 e4 76 - f0 b2 14 00 ec ff ff ff .......v........ 0ce2eb78 01 00 00 00 00 00 00 00 - 16 00 00 00 f0 b2 14 00 ................ 0ce2eb88 c4 eb e2 0c 62 25 df 77 - f8 65 49 00 ec ff ff ff ....b%.w.eI..... 0ce2eb98 01 00 00 00 00 00 00 00 - 16 00 00 00 f0 b2 14 00 ................ 0ce2eba8 16 00 00 00 9c eb e2 0c - 16 00 00 00 28 ee e2 0c ............(... 0ce2ebb8 38 27 e4 77 80 25 df 77 - ff ff ff ff 00 00 00 00 8'.w.%.w........ 0ce2ebc8 28 ec e2 0c d1 5b f8 77 - 00 b1 e4 76 4a e5 dd 76 (....[.w...vJ..v 0ce2ebd8 d8 b1 e4 76 3e 06 95 00 - f0 b2 14 00 00 00 00 c0 ...v>........... 0ce2ebe8 1d 00 00 00 00 00 00 00 - 26 00 00 00 16 00 00 00 ........&....... 0ce2ebf8 00 00 00 00 00 00 00 00 - 26 00 00 00 16 00 00 00 ........&....... 0ce2ec08 3e 06 95 00 84 00 00 00 - 20 00 cc 00 16 00 00 00 >....... ....... 0ce2ec18 08 00 00 00 00 00 00 00 - 26 00 00 00 00 00 00 00 ........&....... 0ce2ec28 8c ec e2 0c e7 d5 dd 76 - 62 07 01 37 3e 06 95 00 .......vb..7>... 0ce2ec38 f0 b2 14 00 62 07 01 37 - 01 00 00 00 00 00 00 00 ....b..7........ 0ce2ec48 00 00 00 00 26 00 00 00 - 16 00 00 00 00 00 00 00 ....&........... 0ce2ec58 00 00 00 00 38 00 00 00 - 74 1d df 77 1b 00 00 00 ....8...t..w.... 0ce2ec68 93 02 00 00 dc ec e2 0c - 23 00 00 00 a4 ed 01 a0 ........#....... 0ce2ec78 b0 74 39 a0 b8 ec e2 0c - 3e 06 95 00 f0 b2 14 00 .t9.....>....... 0ce2ec88 00 00 00 c0 ac ec e2 0c - 0a 1d df 77 3e 06 95 00 ...........w>... 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1396) 时间: 2003-8-23 @ 22:43:41.406 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 904 Explorer.exe 1020 Rundll32.exe 1028 daemon.exe 1044 ccApp.exe 1092 RealPlay.exe 1108 internat.exe 1008 AcroTray.exe 1412 RUNDLL32.exe 1424 RUNDLL32.exe 276 wuauclt.exe 1380 cthighway.exe 868 conime.exe 1548 XDICT.exe 1396 iexplore.exe 1472 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01550000 - 01558000) (015A0000 - 015B0000) (016C0000 - 016DC000) (016E0000 - 016F9000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (74F90000 - 74F97000) (75A50000 - 75A55000) (770F0000 - 772ED000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01910000 - 01927000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (75A60000 - 75A88000) (75010000 - 75020000) (76DB0000 - 76DC1000) (77530000 - 77560000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75CE0000 - 75CE6000) (02140000 - 0215B000) (02270000 - 0228E000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (02760000 - 028ED000) (76AF0000 - 76B2D000) (68EF0000 - 68F0F000) (6DDA0000 - 6DDAA000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (751C0000 - 751D5000) (6AC80000 - 6ACBC000) (76B30000 - 76B44000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (759D0000 - 75A3B000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (6E170000 - 6E18A000) (64260000 - 64288000) (6B6E0000 - 6B709000) (6A0E0000 - 6A15F000) (688D0000 - 688DE000) (5D300000 - 5D381000) (6F890000 - 6F8A8000) (6A900000 - 6A9EA000) (657F0000 - 65838000) (4AA00000 - 4AA15000) (6CC40000 - 6CC6C000) (6CDF0000 - 6CE56000) (6B080000 - 6B0A9000) (6CE80000 - 6CEAF000) 线程 ID 0x578 的状态转储 eax=00000000 ebx=00000000 ecx=02c16800 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 02DA01E6 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 12 05 ee 00 02 80 00 00 - 00 00 00 00 00 00 00 00 ................ 0006dd68 4e 2d 51 1c 53 01 00 00 - fc 00 00 00 00 00 00 00 N-Q.S........... 0006dd78 04 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 e6 01 da 02 ........|!.v.... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x624 的状态转储 eax=00000000 ebx=80020000 ecx=00010101 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 787020D9 787025B9 0007E288 00000000 4007DDA4 ntdll!NtReplyWaitReceivePortEx 00BCFFA8 787024DA 0007C0F8 00BCFFEC 77E687DD 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 00BCFFB4 77E687DD 0007E3B8 00000000 4007DDA4 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 00BCFFEC 00000000 787024C2 0007E3B8 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 00bcfe28 85 22 70 78 04 01 00 00 - 54 ff bc 00 00 00 00 00 ."px....T....... 00bcfe38 20 99 f3 02 58 ff bc 00 - 80 c0 07 00 60 e2 07 00 ...X.......`... 00bcfe48 6d 31 f8 77 1f 00 00 00 - 90 95 89 81 90 95 89 81 m1.w............ 00bcfe58 00 00 00 00 01 00 00 00 - b4 4b 21 bc 00 00 00 00 .........K!..... 00bcfe68 18 d4 00 00 78 4b 21 bc - 00 00 00 00 72 4f 41 80 ....xK!.....rOA. 00bcfe78 b0 96 89 81 60 57 89 81 - 68 4c 21 bc 6a 49 00 00 ....`W..hL!.jI.. 00bcfe88 04 00 00 00 c8 04 29 81 - 66 41 4a 80 80 f3 06 00 ......).fAJ..... 00bcfe98 00 00 00 00 48 f3 06 00 - 3b 8c 10 02 00 00 00 00 ....H...;....... 00bcfea8 00 00 00 00 01 00 00 00 - 19 00 02 00 00 00 00 00 ................ 00bcfeb8 19 00 02 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfec8 74 05 00 00 00 00 00 00 - 0c 4c 21 bc 00 00 00 00 t........L!..... 00bcfed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcff08 00 00 00 00 a8 28 50 c0 - ef 00 00 00 00 20 50 c0 .....(P...... P. 00bcff18 19 00 02 00 06 00 02 00 - ef 00 00 00 01 00 00 00 ................ 00bcff28 00 20 50 c0 40 b6 10 81 - a0 7a 1a 81 00 00 00 00 . P.@....z...... 00bcff38 a0 7a 1a 81 30 7c 1a 81 - 64 4c 21 bc f3 da 42 80 .z..0|..dL!...B. 00bcff48 a4 da 42 80 d4 4b 06 80 - 00 7c 1a 81 00 00 02 80 ..B..K...|...... 00bcff58 00 a2 2f 4d ff ff ff ff - 50 fe bc 00 00 00 02 80 ../M....P....... 线程 ID 0x498 的状态转储 eax=00000000 ebx=77f8377b ecx=000a2c88 edx=00000000 esi=00000000 edi=00000001 eip=77f83786 esp=017cfacc ebp=017cfb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0232d09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 017CFB04 74F57EE6 00000224 00000240 00000001 00000004 ntdll!NtWaitForSingleObject 017CFBF0 74FB1DA9 00000001 017CFE84 017CFC7C 017CFD80 msafd!WSPSetSockOpt 017CFC54 76BD6F2E 00000001 017CFE84 017CFC7C 017CFD80 ws2_32!select 017CFFB0 76BD6E24 77E687DD 000A2E18 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 017CFFEC 00000000 76BD6E1B 000A2E18 00000000 001B3808 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 017cfacc 62 bb f5 74 24 02 00 00 - 01 00 00 00 f0 fa 7c 01 b..t$.........|. 017cfadc 84 fe 7c 01 78 fb 7c 01 - 68 fb 7c 01 f0 84 08 f2 ..|.x.|.h.|..... 017cfaec 84 69 c3 01 c0 b4 b3 ff - ff ff ff ff d0 63 0a 00 .i...........c.. 017cfafc 00 00 00 00 00 00 00 00 - f0 fb 7c 01 e6 7e f5 74 ..........|..~.t 017cfb0c 24 02 00 00 40 02 00 00 - 01 00 00 00 04 00 00 00 $...@........... 017cfb1c 80 fd 7c 01 f8 63 0a 00 - 7c fc 7c 01 00 00 00 00 ..|..c..|.|..... 017cfb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff 40 02 00 00 ............@... 017cfb3c 24 02 00 00 00 00 00 00 - 00 00 07 00 90 fb 7c 01 $.............|. 017cfb4c 17 20 01 00 80 fb 7c 01 - 10 00 00 00 00 00 00 00 . ....|......... 017cfb5c 06 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 017cfb6c ff ff ff ff 01 00 00 00 - 00 63 0a 00 40 02 00 00 .........c..@... 017cfb7c 19 00 00 00 30 00 00 00 - 40 02 00 00 a0 41 c9 77 ....0...@....A.w 017cfb8c a0 41 c9 77 dc fb 7c 01 - 95 2b f8 77 08 36 f8 77 .A.w..|..+.w.6.w 017cfb9c ff ff ff ff ec fb 7c 01 - 1e 73 e6 77 00 00 07 00 ......|..s.w.... 017cfbac d0 63 0a 00 24 00 00 00 - 00 00 00 00 68 fb 7c 01 .c..$.......h.|. 017cfbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 017cfbcc 00 00 00 00 1c 00 00 00 - 84 fb 7c 01 1c fb 7c 01 ..........|...|. 017cfbdc 24 fc 7c 01 44 fc 7c 01 - 36 df f5 74 78 30 f5 74 $.|.D.|.6..tx0.t 017cfbec ff ff ff ff 54 fc 7c 01 - a9 1d fb 74 01 00 00 00 ....T.|....t.... 017cfbfc 84 fe 7c 01 7c fc 7c 01 - 80 fd 7c 01 90 ff 7c 01 ..|.|.|...|...|. 线程 ID 0x398 的状态转储 eax=00000000 ebx=00000004 ecx=00000002 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=0184fd24 ebp=0184fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:023ad2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0184FD70 77E6A31D 0184FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0184FFB4 77E687DD 00000005 0009EA34 7FFDB000 000A5640 kernel32!WaitForMultipleObjects 0184FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x84 的状态转储 eax=04be0010 ebx=80020000 ecx=00000000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0188fe28 ebp=0188ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:023ed3fb=00000000 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0188FF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0188FFA8 787024DA 0007C0F8 0188FFEC 77E687DD 000AA638 rpcrt4!NdrConformantArrayMemorySize 0188FFB4 77E687DD 000AA638 00000000 00000000 000AA638 rpcrt4!NdrConformantArrayMemorySize 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1316) 时间: 2003-8-24 @ 16:32:34.406 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 904 Explorer.exe 1020 Rundll32.exe 1028 daemon.exe 1044 ccApp.exe 1092 RealPlay.exe 1108 internat.exe 1008 AcroTray.exe 1412 RUNDLL32.exe 1424 RUNDLL32.exe 276 wuauclt.exe 1380 cthighway.exe 868 conime.exe 1548 XDICT.exe 1316 iexplore.exe 976 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (015C0000 - 015C8000) (01610000 - 01620000) (01730000 - 0174C000) (01750000 - 01769000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (74F90000 - 74F97000) (75A50000 - 75A55000) (770F0000 - 772ED000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01990000 - 019A7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01F70000 - 01F8B000) (020A0000 - 020BE000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (68EF0000 - 68F0F000) (02520000 - 026AD000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (76DB0000 - 76DC1000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (6AC80000 - 6ACBC000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (76B30000 - 76B44000) 线程 ID 0x474 的状态转储 eax=00000001 ebx=00000000 ecx=00000062 edx=00000000 esi=00070608 edi=00000000 eip=77f83786 esp=0006c804 ebp=0006c874 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:00bc9dd7=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006C874 77F85BD1 00070600 77FCB271 00070608 00000050 ntdll!NtWaitForSingleObject 0006CA20 77A32099 00070000 00000000 00000050 78FBD290 ntdll!RtlIntegerToUnicodeString 0006CA44 78FBDAD2 00000050 028D8790 00082CB0 76C42D7A ole32!CoTaskMemFree 0006DAD0 76C4D88D 0006DB24 00008000 02577C5F 00082CC0 shell32!Ordinal18 0006DB38 025797DC 0006DB60 0006DB8C 75BDAE0E 026E67E0 shdocvw!Ordinal174 0006DBA4 75BDB0FD 75BDA780 01A282F0 75A90013 01B2DC70 ! 0006DC18 75BDA5BE 75A930D8 01A2A250 00000000 00008002 mshtml! 0006DC50 75A91A20 0006DD58 0006DD60 C0000000 00000000 mshtml! 0006DC70 77DF1D0A 00C901F0 00000BB8 00000000 00000000 mshtml! 0006DC90 77DF1BC8 75A918FC 00C901F0 00008002 00000000 user32!DispatchMessageW 0006DD1C 77DF1CEF 0006DD58 00000000 76DD4C9F 0006DD58 user32!GetAppCompatFlags2 0006DD58 00008002 00000000 00000000 2023C0EE 0000016B user32!DispatchMessageW *----> 原始堆栈转储 <----* 0006c804 55 5c f8 77 10 00 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 0006c814 00 00 07 00 98 08 07 00 - 0b 00 00 00 00 00 07 00 ................ 0006c824 98 08 07 00 0b 00 00 00 - c8 6d 0d 05 20 c8 06 00 .........m.. ... 0006c834 00 15 00 00 dc c9 06 00 - 95 2b f8 77 b8 39 f8 77 .........+.w.9.w 0006c844 ff ff ff ff 7c c8 06 00 - 0b 00 00 00 70 39 f8 77 ....|.......p9.w 0006c854 00 00 07 00 98 08 07 00 - 0b 00 00 00 00 00 00 00 ................ 0006c864 54 c8 06 00 00 15 00 00 - 10 ca 06 00 00 00 00 00 T............... 0006c874 20 ca 06 00 d1 5b f8 77 - 00 06 07 00 71 b2 fc 77 ....[.w....q..w 0006c884 08 06 07 00 50 00 00 00 - 48 c2 12 00 00 00 00 00 ....P...H....... 0006c894 ff ff ff ff 3c ca 06 00 - 27 b2 fc 77 98 08 07 00 ....<...'..w.... 0006c8a4 50 00 00 00 48 c2 12 00 - 00 00 00 00 0c 2c a9 75 P...H........,.u 0006c8b4 45 43 a9 75 02 00 00 00 - 70 ac 0a 05 d0 c8 06 00 EC.u....p....... 0006c8c4 30 3e a2 01 25 39 aa 75 - 02 00 00 00 20 20 28 05 0>..%9.u.... (. 0006c8d4 60 03 07 00 60 03 07 00 - 07 00 00 00 20 00 00 00 `...`....... ... 0006c8e4 60 03 07 00 02 00 00 00 - 70 ac 0a 05 b8 03 07 00 `.......p....... 0006c8f4 b8 03 07 00 28 c9 06 00 - 00 00 00 00 e5 38 f8 77 ....(........8.w 0006c904 00 00 07 00 b8 62 4b 06 - 00 00 00 00 04 c9 06 00 .....bK......... 0006c914 44 c9 06 00 00 00 00 00 - e5 38 f8 77 00 00 07 00 D........8.w.... 0006c924 c0 6d 0d 05 00 00 00 00 - 20 c9 06 00 88 06 07 00 .m...... ....... 0006c934 d4 c9 06 00 02 00 00 00 - 70 ac 0a 05 ff ff ff ff ........p....... 线程 ID 0x498 的状态转储 eax=00000000 ebx=ffffffff ecx=00000238 edx=00000000 esi=7fffffff edi=00000102 eip=77f83786 esp=0183facc ebp=0183fb04 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0239d09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0183FB04 74F57EE6 00000234 00000238 00000000 00000004 ntdll!NtWaitForSingleObject 0183FBF0 74FB1DA9 00000003 0183FE84 0183FC7C 0183FD80 msafd!WSPSetSockOpt 0183FC54 76BD6F2E 00000003 0183FE84 0183FC7C 0183FD80 ws2_32!select 0183FFB0 76BD6E24 77E687DD 000A2E18 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0183FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0183facc d2 bc f5 74 34 02 00 00 - 01 00 00 00 f0 fa 83 01 ...t4........... 0183fadc 84 fe 83 01 48 c2 7d 02 - 38 c2 7d 02 24 7a 4c 44 ....H.}.8.}.$zLD 0183faec 1a 6a c3 01 ff ff ff ff - ff ff ff 7f 80 64 0a 00 .j...........d.. 0183fafc 00 00 00 00 00 00 00 00 - f0 fb 83 01 e6 7e f5 74 .............~.t 0183fb0c 34 02 00 00 38 02 00 00 - 00 00 00 00 04 00 00 00 4...8........... 0183fb1c 80 fd 83 01 18 6a 0a 00 - 7c fc 83 01 60 df 70 ff .....j..|...`.p. 0183fb2c ff ff ff ff 80 38 c8 4d - ff ff ff ff 38 02 00 00 .....8.M....8... 0183fb3c 34 02 00 00 00 00 00 00 - 00 00 00 00 90 fb 83 01 4............... 0183fb4c 17 20 01 00 80 fb 83 01 - 10 00 00 00 00 00 00 00 . .............. 0183fb5c 01 00 00 00 60 df 70 ff - ff ff ff ff 00 00 00 00 ....`.p......... 0183fb6c ff ff ff ff 01 00 00 00 - 80 64 0a 00 34 02 00 00 .........d..4... 0183fb7c 01 00 00 00 24 fc 83 01 - 01 00 00 00 00 00 00 00 ....$........... 0183fb8c 20 00 00 00 00 00 00 00 - 01 00 00 00 00 00 00 00 ............... 0183fb9c ff ff ff ff 90 fb 83 01 - 00 00 00 00 00 00 00 00 ................ 0183fbac 80 64 0a 00 fc fb 83 01 - 02 00 00 00 38 c2 7d 02 .d..........8.}. 0183fbbc 5c 00 00 00 05 00 00 00 - 00 00 00 00 00 00 00 00 \............... 0183fbcc 38 02 00 00 24 fc 83 01 - 84 c2 7d 02 1c fb 83 01 8...$.....}..... 0183fbdc 24 fc 83 01 44 fc 83 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0183fbec ff ff ff ff 54 fc 83 01 - a9 1d fb 74 03 00 00 00 ....T......t.... 0183fbfc 84 fe 83 01 7c fc 83 01 - 80 fd 83 01 90 ff 83 01 ....|........... 线程 ID 0x3c8 的状态转储 eax=00000003 ebx=00000004 ecx=00000101 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=018bfd24 ebp=018bfd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0241d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 018BFD70 77E6A31D 018BFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 018BFFB4 77E687DD 00000005 000A3C2C 7FFDB000 000A5680 kernel32!WaitForMultipleObjects 018BFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x568 的状态转储 eax=fffffefe ebx=00050003 ecx=0007a4b8 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=018ffe28 ebp=018fff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0245d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 018FFF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 018FFFA8 787024DA 0007C0F8 018FFFEC 77E687DD 000AA770 rpcrt4!NdrConformantArrayMemorySize 018FFFB4 77E687DD 000AA770 00000000 00000000 000AA770 rpcrt4!NdrConformantArrayMemorySize 018FFFEC 00000000 787024C2 000AA770 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 018ffe28 85 22 70 78 04 01 00 00 - 54 ff 8f 01 00 00 00 00 ."px....T....... 018ffe38 60 0f 0b 00 58 ff 8f 01 - 80 c0 07 00 38 64 0a 00 `...X.......8d.. 018ffe48 6d 31 f8 77 01 b2 fd 7f - af 01 00 00 41 d6 44 80 m1.w........A.D. 018ffe58 af 01 00 00 f0 f0 1a 81 - 00 b0 fd 7f fc 07 30 c0 ..............0. 018ffe68 00 00 00 00 00 e0 fd 7f - af 01 00 00 38 2c c2 bb ............8,.. 018ffe78 00 00 00 00 01 00 00 00 - 00 00 00 00 05 05 00 00 ................ 018ffe88 fc 07 30 c0 38 2c c2 bb - c8 d4 44 80 00 b0 fd 7f ..0.8,....D..... 018ffe98 00 00 00 00 00 00 00 00 - 00 b0 fd 7f 28 e4 1c 81 ............(... 018ffea8 01 f1 1a 81 00 00 00 00 - 6c ff 1f c0 41 d6 44 80 ........l...A.D. 018ffeb8 ab 01 00 00 f0 f0 1a 81 - 00 f0 b9 00 08 00 30 c0 ..............0. 018ffec8 00 00 00 00 48 68 ef e2 - ab 01 00 00 d9 9a 23 63 ....Hh........#c 018ffed8 00 00 00 00 01 00 00 00 - 00 00 00 00 00 00 ba 00 ................ 018ffee8 08 00 30 c0 00 b0 fd 7f - c8 d4 44 80 00 f0 b9 00 ..0.......D..... 018ffef8 00 00 00 00 a0 3b 18 81 - 01 00 00 00 50 3a 72 81 .....;......P:r. 018fff08 60 bd 5a 81 20 f0 1a 81 - 28 4b 00 e1 1b 55 45 80 `.Z. ...(K...UE. 018fff18 00 00 00 82 00 00 00 02 - 64 2c c2 bb 04 22 49 80 ........d,..."I. 018fff28 88 9c 89 81 00 e4 39 81 - 20 00 1f 81 00 00 00 00 ......9. ....... 018fff38 20 00 1f 81 b0 01 1f 81 - 64 2c c2 bb f3 da 42 80 .......d,....B. 018fff48 a4 da 42 80 d4 4b 06 80 - 80 01 1f 81 03 00 05 00 ..B..K.......... 018fff58 00 a2 2f 4d ff ff ff ff - 50 fe 8f 01 00 00 07 80 ../M....P....... 线程 ID 0x2fc 的状态转储 eax=000000c0 ebx=0000003f ecx=0238ef50 edx=00000000 esi=0238ec00 edi=00000001 eip=77f837b2 esp=0238ebe8 ebp=0238ffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02eec1bb=00000000 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0238FFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 0238FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0238ebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 38 02 01 00 00 00 ...w......8..... 0238ebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 0238ec08 54 03 00 00 fc 02 00 00 - 0f 00 00 00 0f 00 00 00 T............... 0238ec18 58 03 00 00 28 03 00 00 - a4 03 00 00 b4 03 00 00 X...(........... 0238ec28 c8 03 00 00 e8 03 00 00 - f8 03 00 00 0c 04 00 00 ................ 0238ec38 28 04 00 00 40 04 00 00 - 50 04 00 00 64 04 00 00 (...@...P...d... 0238ec48 78 04 00 00 90 04 00 00 - a0 04 00 00 00 00 00 00 x............... 0238ec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238eca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0238ed18 00 00 00 00 40 cc 0d 00 - 30 c9 10 00 50 ca 10 00 ....@...0...P... 线程 ID 0x4c4 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=023cff20 ebp=023cff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f2d4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023CFF6C 77E6A31D 023CFF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects *----> 原始堆栈转储 <----* 023cff20 b7 7a e6 77 03 00 00 00 - 44 ff 3c 02 01 00 00 00 .z.w....D.<..... 023cff30 00 00 00 00 00 00 00 00 - b0 00 c4 77 00 00 00 00 ...........w.... 023cff40 f6 76 e6 77 cc 03 00 00 - d0 03 00 00 10 04 00 00 .v.w............ 023cff50 00 00 00 00 00 00 00 00 - 78 32 07 00 16 00 18 00 ........x2...... 023cff60 24 ed bf 77 00 00 00 00 - 08 ff 3c 02 00 00 00 00 $..w......<..... 023cff70 1d a3 e6 77 44 ff 3c 02 - 01 00 00 00 00 00 00 00 ...wD.<......... 023cff80 00 00 00 00 00 00 00 00 - 2c ec bf 77 03 00 00 00 ........,..w.... 023cff90 4c 01 c4 77 00 00 00 00 - ff ff ff ff 50 be 06 00 L..w........P... 023cffa0 e6 7e f8 77 ec ff 3c 02 - 00 00 00 00 00 00 00 00 .~.w..<......... 023cffb0 03 00 00 00 00 00 bf 77 - dd 87 e6 77 00 00 00 00 .......w...w.... 023cffc0 50 be 06 00 e6 7e f8 77 - 00 00 00 00 00 30 fd 7f P....~.w.....0.. 023cffd0 00 00 00 00 c0 ff 3c 02 - 00 00 00 00 ff ff ff ff ......<......... 023cffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 023cfff0 00 00 00 00 a0 eb bf 77 - 00 00 00 00 00 00 00 00 .......w........ 023d0000 4d 5a 90 00 03 00 00 00 - 04 00 00 00 ff ff 00 00 MZ.............. 023d0010 b8 00 00 00 00 00 00 00 - 40 00 00 00 00 00 00 00 ........@....... 023d0020 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023d0030 00 00 00 00 00 00 00 00 - 00 00 00 00 b8 00 00 00 ................ 023d0040 0e 1f ba 0e 00 b4 09 cd - 21 b8 01 4c cd 21 54 68 ........!..L.!Th 023d0050 69 73 20 70 72 6f 67 72 - 61 6d 20 63 61 6e 6e 6f is program canno 线程 ID 0x2f8 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0277ff24 ebp=0277ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:032dd4f7=ffffff00 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0277FF70 77E6A31D 0277FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0277FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0277FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0277ff24 b7 7a e6 77 02 00 00 00 - 48 ff 77 02 01 00 00 00 .z.w....H.w..... 0277ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0277ff44 00 00 00 00 54 05 00 00 - 50 05 00 00 80 51 44 81 ....T...P....QD. 0277ff54 20 50 44 81 80 2c e3 bb - 02 00 00 00 f8 eb fd 7f PD..,.......... 0277ff64 00 00 00 00 78 ff 77 02 - 00 00 00 00 b4 ff 77 02 ....x.w.......w. 0277ff74 1d a3 e6 77 48 ff 77 02 - 01 00 00 00 00 00 00 00 ...wH.w......... 0277ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0277ff94 a4 ff 77 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..w............. 0277ffa4 54 05 00 00 50 05 00 00 - 00 00 00 00 00 00 00 00 T...P........... 0277ffb4 ec ff 77 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..w....w........ 0277ffc4 00 00 00 00 00 00 00 00 - 00 e0 f9 7f 45 00 00 00 ............E... 0277ffd4 c0 ff 77 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ..w.E.......V..w 0277ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0277fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02780004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02780014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02780024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02780034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02780044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02780054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x36c 的状态转储 eax=2023beec ebx=00000000 ecx=01b74a50 edx=00000000 esi=77f8377b edi=000001d8 eip=77f83786 esp=02f6ff54 ebp=02f6ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03acd527=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02F6FF78 77E67837 000001D8 FFFFFFFF 00000000 75BDA104 ntdll!NtWaitForSingleObject FFFFFFFF 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 02f6ff54 0f 78 e6 77 d8 01 00 00 - 00 00 00 00 00 00 00 00 .x.w............ 02f6ff64 78 31 8a 02 00 a1 a2 01 - 1d c1 23 20 50 4a b7 01 x1........# PJ.. 02f6ff74 50 4a b7 01 ff ff ff ff - 37 78 e6 77 d8 01 00 00 PJ......7x.w.... 02f6ff84 ff ff ff ff 00 00 00 00 - 04 a1 bd 75 d8 01 00 00 ...........u.... 02f6ff94 ff ff ff ff 00 a1 a2 01 - ec ff f6 02 5d 28 df 77 ............](.w 02f6ffa4 00 a1 a2 01 00 00 00 00 - 9a f4 b2 75 14 05 74 00 ...........u..t. 02f6ffb4 74 f4 b2 75 dd 87 e6 77 - 00 a1 a2 01 5d 28 df 77 t..u...w....](.w 02f6ffc4 14 05 74 00 00 a1 a2 01 - 00 d0 f9 7f 14 05 74 00 ..t...........t. 02f6ffd4 c0 ff f6 02 14 05 74 00 - ff ff ff ff 56 18 e8 77 ......t.....V..w 02f6ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02f6fff4 6b f4 b2 75 00 a1 a2 01 - 00 00 00 00 00 00 00 00 k..u............ 02f70004 9f 10 13 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ................ 02f70014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 02f70024 ff ff ff 00 00 00 00 00 - 00 00 00 00 a8 03 86 00 ................ 02f70034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 02f70044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 02f70054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02f70064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 02f70074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02f70084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x550 的状态转储 eax=00000000 ebx=000005d0 ecx=01010101 edx=00000000 esi=0302ff98 edi=77df7c12 eip=77df1d6b esp=0302ff58 ebp=0302ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03b8d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03b8d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03b8d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0302FF78 77535C36 0302FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0302FFB4 77E687DD 000005D0 77555428 00063E34 000005D0 winmm!midiOutGetNumDevs 0302FFEC 00000000 77535BB9 000005D0 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0302ff58 4e 7c df 77 98 ff 02 03 - 00 00 00 00 00 00 00 00 N|.w............ 0302ff68 00 00 00 00 d0 05 00 00 - 00 00 00 00 12 7c df 77 .............|.w 0302ff78 b4 ff 02 03 36 5c 53 77 - 98 ff 02 03 00 00 00 00 ....6\Sw........ 0302ff88 00 00 00 00 00 00 00 00 - 28 54 55 77 34 3e 06 00 ........(TUw4>.. 0302ff98 30 05 73 00 bc 03 00 00 - ec 9e 7a 03 00 00 00 00 0.s.......z..... 0302ffa8 ac be 23 20 24 00 00 00 - 3a 00 00 00 ec ff 02 03 ..# $...:....... 0302ffb8 dd 87 e6 77 d0 05 00 00 - 28 54 55 77 34 3e 06 00 ...w....(TUw4>.. 0302ffc8 d0 05 00 00 00 b0 f9 7f - 00 00 53 77 c0 ff 02 03 ..........Sw.... 0302ffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 0302ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 0302fff8 d0 05 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 ................ 03030008 47 00 00 00 4e 00 00 00 - 20 00 00 00 44 03 00 00 G...N... ...D... 03030018 d9 04 00 00 0a 02 00 00 - 55 00 00 00 3c 00 00 00 ........U...<... 03030028 30 0e 03 03 30 00 03 03 - 00 00 00 00 10 92 8c 05 0...0........... 03030038 38 b5 cc 04 30 81 8c 05 - 38 5c c1 04 d8 df c1 04 8...0...8\...... 03030048 00 00 00 00 30 82 c2 04 - 38 6d 94 02 58 8c 91 02 ....0...8m..X... 03030058 08 f5 aa 06 a8 1b 9f 06 - 00 00 00 00 00 00 00 00 ................ 03030068 d8 c8 8c 05 00 00 00 00 - a0 c9 c2 04 b8 b1 8c 05 ................ 03030078 20 24 d2 04 e0 38 af 05 - 00 00 00 00 d0 df 8c 05 $...8.......... 03030088 48 67 c6 04 00 00 00 00 - 48 96 a0 05 00 00 00 00 Hg......H....... 线程 ID 0x134 的状态转储 eax=049fec0c ebx=00000000 ecx=049fed04 edx=00000000 esi=00115708 edi=00000000 eip=77df2268 esp=049fee64 ebp=049feea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0555c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 049FEEA8 76DF217C 01050600 049FFFA4 0289B7C8 00000000 user32!WaitMessage 049FEF30 76DF1F65 0289B7C8 00070718 00000000 0289B7C8 browseui!Ordinal102 049FFFAC 76C66950 0289B7C8 77E687DD 0289B7C8 00070718 browseui!Ordinal102 049FFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 049fee64 92 23 df 76 a4 ff 9f 04 - c8 b7 89 02 00 00 00 00 .#.v............ 049fee74 94 05 90 01 0f 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049fee84 d6 c4 23 20 5d 01 00 00 - 00 01 00 00 98 52 07 00 ..# ]........R.. 049fee94 01 00 00 00 08 57 11 00 - 01 44 00 80 38 ba 89 02 .....W...D..8... 049feea4 00 00 00 00 30 ef 9f 04 - 7c 21 df 76 00 06 05 01 ....0...|!.v.... 049feeb4 a4 ff 9f 04 c8 b7 89 02 - 00 00 00 00 00 00 00 00 ................ 049feec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 049feed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 049feee4 f4 ee 9f 04 a4 ff 9f 04 - 00 00 00 00 00 00 00 00 ................ 049feef4 00 00 00 00 00 00 00 00 - 20 ef 9f 04 37 78 e6 77 ........ ...7x.w 049fef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 049fef14 ff 02 fa 77 b4 ee 9f 04 - 78 dd 06 00 dc ff 9f 04 ...w....x....... 049fef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 9f 04 Rz.vxi.v........ 049fef34 65 1f df 76 c8 b7 89 02 - 18 07 07 00 00 00 00 00 e..v............ 049fef44 c8 b7 89 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049fef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049fef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049fef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049fef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049fef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x534 的状态转储 eax=0937fcfc ebx=80070000 ecx=0007a4b8 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0937fe28 ebp=0937ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:09edd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0937FF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0937FFA8 787024DA 0015CEA8 0937FFEC 77E687DD 0287B918 rpcrt4!NdrConformantArrayMemorySize 0937FFB4 77E687DD 0287B918 00000000 00000000 0287B918 rpcrt4!NdrConformantArrayMemorySize 0937FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x658 的状态转储 eax=093fff28 ebx=0013c4e0 ecx=7ffd7000 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=093fff84 ebp=093fffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:09f5d557=???????? 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:09f5d557=???????? 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:09f5d557=???????? 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:09f5d557=???????? 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 093FFFB4 77E687DD 74F55F4B 7FFDB000 00000000 0013C4E0 ntdll!ZwRemoveIoCompletion 093FFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x540 的状态转储 eax=00000074 ebx=0943ff74 ecx=7ffa001c edx=00000000 esi=77f8377b edi=00000110 eip=77f83786 esp=0943ff58 ebp=0943ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:09f9d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0943FF7C 77E67837 00000110 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x544 的状态转储 eax=094bff01 ebx=094bff74 ecx=77b15380 edx=00000000 esi=77f8377b edi=000007ec eip=77f83786 esp=094bff58 ebp=094bff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0a01d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 094BFF7C 77E67837 000007EC 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x140 的状态转储 eax=00000000 ebx=00050003 ecx=7ff9c000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0994fe28 ebp=0994ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0a4ad3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0994FF74 787020D9 78702528 0007E288 00000000 00070178 ntdll!NtReplyWaitReceivePortEx 0994FFA8 787024DA 063091C8 0994FFEC 77E687DD 061D20A0 rpcrt4!NdrConformantArrayMemorySize 0994FFB4 77E687DD 061D20A0 00000000 00070178 061D20A0 rpcrt4!NdrConformantArrayMemorySize 0994FFEC 00000000 787024C2 061D20A0 00000000 5E879B42 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0994fe28 85 22 70 78 04 01 00 00 - 54 ff 94 09 00 00 00 00 ."px....T....... 0994fe38 48 e9 11 00 58 ff 94 09 - 80 c0 07 00 c8 91 30 06 H...X.........0. 0994fe48 a0 20 1d 06 4a 12 06 ed - 40 f1 d7 be 01 00 00 00 . ..J...@....... 0994fe58 08 c0 56 81 28 a1 e1 bf - 40 f1 d7 be 01 00 00 00 ..V.(...@....... 0994fe68 c8 96 00 00 40 f1 d7 be - 01 00 00 00 a8 96 e1 bf ....@........... 0994fe78 08 c0 56 81 e8 9c 74 81 - 4c 9f 74 81 04 05 00 00 ..V...t.L.t..... 0994fe88 3c a0 e1 bf 08 c0 56 81 - 94 2b 73 bc 01 00 00 00 <.....V..+s..... 0994fe98 00 00 00 00 23 96 e1 bf - 08 c0 56 81 eb 51 45 80 ....#.....V..QE. 0994fea8 48 27 8d 81 48 27 8d 81 - 60 5e bf e2 e0 24 36 81 H'..H'..`^...$6. 0994feb8 c8 24 36 81 ec 2b 73 bc - 03 00 36 81 0a b0 46 80 .$6..+s...6...F. 0994fec8 30 6b 89 81 8c 5e bf e2 - 68 5e bf e2 e4 ba 1b 81 0k...^..h^...... 0994fed8 ff ff ff ff dc 2b 73 bc - 6c 51 06 80 01 00 00 00 .....+s.lQ...... 0994fee8 f7 b2 45 01 70 2c 73 bc - e2 ac 46 80 01 00 00 00 ..E.p,s...F..... 0994fef8 00 00 00 00 e4 ba 1b 81 - e4 ba 1b 81 e0 24 36 81 .............$6. 0994ff08 62 04 00 00 e9 99 8f b8 - 76 2e 39 5c 5a 3b 38 c5 b.......v.9\Z;8. 0994ff18 28 fc 29 81 60 1d 43 80 - 00 a2 2f 4d ff ff ff ff (.).`.C.../M.... 0994ff28 9e 29 33 29 00 e4 39 81 - 20 e0 ba ff 00 00 00 00 .)3)..9. ....... 0994ff38 20 e0 ba ff b0 e1 ba ff - 64 2c 73 bc f3 da 42 80 .......d,s...B. 0994ff48 a4 da 42 80 d4 4b 06 80 - 80 e1 ba ff 03 00 05 00 ..B..K.......... 0994ff58 00 a2 2f 4d ff ff ff ff - 50 fe 94 09 00 00 07 80 ../M....P....... 线程 ID 0x634 的状态转储 eax=0620fe90 ebx=00000002 ecx=2a810015 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0adefe5c ebp=0adefea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0b94d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0ADEFEA8 77DF2A00 0ADEFE80 00000001 00000000 0ADEFEA0 ntdll!NtWaitForMultipleObjects 0ADEFF04 77DF2A77 0ADEFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0ADEFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0ADEFF74 77C58FFD 0ADEFFA0 0ADEFFA4 0ADEFFA8 0ADEFF9C shlwapi!Ordinal271 0ADEFFAC 77C58F85 77F82B95 77E687DD 00000000 0183FA10 shlwapi!Ordinal394 0ADEFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x5e8 的状态转储 eax=00000380 ebx=0000000b ecx=0000037f edx=00000008 esi=00070178 edi=03040000 eip=77f894df esp=0b21acc0 ebp=0b21acd0 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: RtlFreeSid 77f894bd 33c0 xor eax,eax 77f894bf 8a450e mov al,[ebp+0xe] ss:0bd782a2=?? 77f894c2 0fbe801856f877 movsx eax,byte ptr [eax+0x77f85618] ds:77f85998=ff 77f894c9 83c010 add eax,0x10 77f894cc ebb6 jmp wcstoul+0x1be (77f92084) 77f894ce 8b572c mov edx,[edi+0x2c] ds:03b9d5d2=???????? 77f894d1 8b148a mov edx,[edx+ecx*4] ds:0000037f=???????? 77f894d4 83c208 add edx,0x8 77f894d7 3bf2 cmp esi,edx 77f894d9 0f844dffffff je RtlFreeSid+0x2d6 (77f8942c) 错误 ->77f894df 0fb75af8 movzx ebx,word ptr [edx+0xf8] ds:00b5d5db=???? 77f894e3 3b5d0c cmp ebx,[ebp+0xc] ss:0bd782a2=???????? 77f894e6 7313 jnb wcstoul+0x135 (77f91ffb) 77f894e8 8b12 mov edx,[edx] ds:00000008=???????? 77f894ea 3bf2 cmp esi,edx 77f894ec 75f1 jnz RtlIsNameLegalDOS8Dot3+0x325 (77f97edf) 77f894ee e9fedd0100 jmp RtlDestroyHandleTable+0x8a2 (77fa72f1) 77f894f3 8d48ff lea ecx,[eax+0xff] ds:00b5d952=???????? 77f894f6 e926ffffff jmp RtlFreeSid+0x2cb (77f89421) 77f894fb 8d02 lea eax,[edx] ds:00000008=???????? 77f894fd e9effdffff jmp RtlFreeSid+0x19b (77f892f1) 77f89502 55 push ebp *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0B21ACD0 77FCC033 00070000 0000000B 76594B21 0B21B181 ntdll!RtlFreeSid 0B21AE78 77A32099 00070000 00000000 0000004E 77A320AB ntdll!RtlSizeHeap 0B21AF04 77A34422 0B21B180 0B21AF3C 0B21AF44 7659F736 ole32!CoTaskMemFree 0B21AF14 7659F736 0B21B180 0B21AF3C 0282D8D8 0B21B181 ole32!StringFromCLSID 0B21AF44 765A06D7 00000000 0B21B180 0508A110 00000000 urlmon!FaultInIEFeature 0B21B220 765A04DC 00000000 00000000 037BB900 00000007 urlmon!CoGetClassObjectFromURL 0B21B254 765A020D 01BEBD7C 0B21C2D8 037BB900 00000007 urlmon!CoGetClassObjectFromURL 0B21C30C 75B240DC 01BEBD7C 00000000 00000000 00000000 urlmon!CoGetClassObjectFromURL 0B21C33C 75B23FD5 01BEBD7C 00000000 00000000 00000000 mshtml! 0B21C5B4 75B23ED6 75C85879 0B21ECD8 01BE26A0 01BEBD40 mshtml! 0B21C5D0 75B23D10 01BE26A0 0B21ECD8 05050810 00000000 mshtml! 0B21CA20 75C64975 0B21ECD8 0B21ED60 051CFE74 01A26A20 mshtml! 0B21ED34 75C612B2 75A930D8 01BE26A0 00000000 00008002 mshtml! 0B21ED6C 75A91A20 0B21EE74 0B21EE7C C0000000 00000000 mshtml! 0B21ED8C 77DF1D0A 00C90642 000008B7 00000000 00000000 mshtml! 0B21EDAC 77DF1BC8 75A918FC 00C90642 00008002 00000000 user32!DispatchMessageW 0B21EE38 77DF1CEF 0B21EE74 00000000 76DD4C9F 0B21EE74 user32!GetAppCompatFlags2 0B21EE74 00008002 00000000 00000000 2023BEFA 00000026 user32!DispatchMessageW *----> 原始堆栈转储 <----* 0b21acc0 00 00 07 00 78 01 07 00 - 0b 00 00 00 78 01 07 00 ....x.......x... 0b21acd0 78 ae 21 0b 33 c0 fc 77 - 00 00 07 00 0b 00 00 00 x.!.3..w........ 0b21ace0 21 4b 59 76 81 b1 21 0b - 00 00 00 00 00 00 00 00 !KYv..!......... 0b21acf0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21ad00 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21ad10 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21ad20 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21ad30 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21ad40 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21ad50 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21ad60 00 00 00 00 98 ad 21 0b - 69 00 00 00 70 39 f8 77 ......!.i...p9.w 0b21ad70 00 00 07 00 38 1a 07 00 - 69 00 00 00 d8 d8 82 02 ....8...i....... 0b21ad80 70 ad 21 0b 80 06 00 00 - 2c af 21 0b 95 2b f8 77 p.!.....,.!..+.w 0b21ad90 b8 39 f8 77 ff ff ff ff - 3c af 21 0b 27 b2 fc 77 .9.w....<.!.'..w 0b21ada0 38 1a 07 00 00 00 00 00 - 40 a2 08 05 d8 c2 21 0b 8.......@.....!. 0b21adb0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21adc0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21add0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21ade0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0b21adf0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x464 的状态转储 eax=00000000 ebx=00000102 ecx=0011aa90 edx=00000000 esi=77f8318c edi=0c8aff74 eip=77f83197 esp=0c8aff60 ebp=0c8aff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0d40d533=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0C8AFF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x48c 的状态转储 eax=765919f0 ebx=00000002 ecx=027e7fd0 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0c91fe5c ebp=0c91fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0d47d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0C91FEA8 77DF2A00 0C91FE80 00000001 00000000 0C91FEA0 ntdll!NtWaitForMultipleObjects 0C91FF04 77DF2A77 0C91FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0C91FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0C91FF74 77C58FFD 0C91FFA0 0C91FFA4 0C91FFA8 0C91FF9C shlwapi!Ordinal271 0C91FFAC 77C58F85 76BD1253 77E687DD 00000000 0B21A314 shlwapi!Ordinal394 0C91FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x290 的状态转储 eax=74fbb7d8 ebx=00000002 ecx=000a2e40 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0c95fe5c ebp=0c95fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0d4bd42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0C95FEA8 77DF2A00 0C95FE80 00000001 00000000 0C95FEA0 ntdll!NtWaitForMultipleObjects 0C95FF04 77DF2A77 0C95FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0C95FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0C95FF74 77C58FFD 0C95FFA0 0C95FFA4 0C95FFA8 0C95FF9C shlwapi!Ordinal271 0C95FFAC 77C58F85 76BD1253 77E687DD 00000000 0B21A314 shlwapi!Ordinal394 0C95FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 发生应用程序意外错误: 应用程序: iexplore.exe (pid=976) 时间: 2003-8-24 @ 16:43:42.921 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 904 Explorer.exe 1020 Rundll32.exe 1028 daemon.exe 1044 ccApp.exe 1092 RealPlay.exe 1108 internat.exe 1008 AcroTray.exe 1412 RUNDLL32.exe 1424 RUNDLL32.exe 276 wuauclt.exe 1380 cthighway.exe 868 conime.exe 1548 XDICT.exe 976 iexplore.exe 1504 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (015C0000 - 015C8000) (01610000 - 01620000) (01730000 - 0174C000) (01750000 - 01769000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (74F90000 - 74F97000) (770F0000 - 772ED000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (019D0000 - 019E7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01FB0000 - 01FCB000) (020E0000 - 020FE000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (68EF0000 - 68F0F000) (024C0000 - 0264D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (6AC80000 - 6ACBC000) (72140000 - 7214B000) (766B0000 - 766B9000) (76F60000 - 76F6F000) 线程 ID 0x5e8 的状态转储 eax=00000000 ebx=00000000 ecx=0267d5b0 edx=00000000 esi=00070608 edi=00000000 eip=77f83786 esp=0006a5f8 ebp=0006a668 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:00bc7bcb=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006A668 77F85BD1 00070600 77FCB271 00070608 08A5ECB0 ntdll!NtWaitForSingleObject 0006A814 77A32099 00070000 00000000 00000038 77A320AB ntdll!RtlIntegerToUnicodeString 0006B8B0 76C4F640 00083A90 08A5ECC4 00008000 0006C91C ole32!CoTaskMemFree 0006CA2C 76C4F5DE 08A5ECB0 00008000 0006CA84 00000824 shdocvw!Ordinal147 0006DAD0 76C4D88D 0006DB24 00008000 02517C5F 00082CC0 shdocvw!Ordinal148 0006DB38 025197DC 0006DB60 0006DB8C 75BDAE0E 028A6030 shdocvw!Ordinal174 0006DBA4 75BDB0FD 75BDA780 01B46CA0 00000013 01ACD6C0 ! 0006DC18 75BDA5BE 75A930D8 01ACD6C0 00000000 00008002 mshtml! 0006DC50 75A91A20 0006DD58 0006DD60 C0000000 00000000 mshtml! 0006DC70 77DF1D0A 00410134 00000939 00000000 00000000 mshtml! 0006DC90 77DF1BC8 75A918FC 00410134 00008002 00000000 user32!DispatchMessageW 0006DD1C 77DF1CEF 0006DD58 00000000 76DD4C9F 0006DD58 user32!GetAppCompatFlags2 0006DD58 00008002 00000000 00000000 202DF432 0000025C user32!DispatchMessageW *----> 原始堆栈转储 <----* 0006a5f8 55 5c f8 77 10 00 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 0006a608 00 00 07 00 08 08 07 00 - 08 00 00 00 b0 c8 06 00 ................ 0006a618 00 00 00 00 08 00 00 00 - 38 21 7c 02 14 a6 06 00 ........8!|..... 0006a628 80 0d 00 00 d0 a7 06 00 - 95 2b f8 77 b8 39 f8 77 .........+.w.9.w 0006a638 ff ff ff ff 70 a6 06 00 - 08 00 00 00 70 39 f8 77 ....p.......p9.w 0006a648 00 00 07 00 08 08 07 00 - 08 00 00 00 00 00 00 00 ................ 0006a658 48 a6 06 00 80 0d 00 00 - 04 a8 06 00 00 00 00 00 H............... 0006a668 14 a8 06 00 d1 5b f8 77 - 00 06 07 00 71 b2 fc 77 .....[.w....q..w 0006a678 08 06 07 00 b0 ec a5 08 - 1c c9 06 00 00 00 00 00 ................ 0006a688 ff ff ff ff 30 a8 06 00 - 27 b2 fc 77 08 08 07 00 ....0...'..w.... 0006a698 00 2f 9d 05 38 c9 06 00 - 00 00 00 00 fa 01 98 00 ./..8........... 0006a6a8 26 00 00 00 78 01 07 00 - e8 c8 a3 05 18 ac 07 00 &...x........... 0006a6b8 fa 01 98 00 0d 00 00 00 - ff 00 00 00 30 a7 06 00 ............0... 0006a6c8 78 01 07 00 78 01 07 00 - 00 00 6a 05 00 00 00 00 x...x.....j..... 0006a6d8 00 00 04 00 44 a7 06 00 - 01 00 00 00 2c a7 06 00 ....D.......,... 0006a6e8 b1 16 f0 37 11 03 7b 00 - e8 c8 a3 05 78 01 07 00 ...7..{.....x... 0006a6f8 e8 c8 a3 05 78 01 07 00 - e0 c8 a3 05 10 03 07 00 ....x........... 0006a708 10 03 07 00 06 00 00 00 - 08 00 00 00 10 03 07 00 ................ 0006a718 01 00 00 00 00 00 00 00 - a8 01 07 00 08 49 73 05 .............Is. 0006a728 03 00 00 00 02 00 00 00 - 00 00 07 00 78 01 07 00 ............x... 线程 ID 0x48c 的状态转储 eax=00000004 ebx=77f8377b ecx=057f39c8 edx=00000000 esi=00000000 edi=00000001 eip=77f83786 esp=0183facc ebp=0183fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0239d09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0183FB04 74F57EE6 00000260 00000268 00000001 00000004 ntdll!NtWaitForSingleObject 0183FBF0 74FB1DA9 00000001 0183FE84 0183FC7C 0183FD80 msafd!WSPSetSockOpt 0183FC54 76BD6F2E 00000001 0183FE84 0183FC7C 0183FD80 ws2_32!select 0183FFB0 76BD6E24 77E687DD 000A2F08 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0183FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0183facc 62 bb f5 74 60 02 00 00 - 01 00 00 00 f0 fa 83 01 b..t`........... 0183fadc 84 fe 83 01 78 fb 83 01 - 68 fb 83 01 01 00 00 00 ....x...h....... 0183faec 1b 6a c3 01 c0 b4 b3 ff - ff ff ff ff a8 69 0a 00 .j...........i.. 0183fafc 00 00 00 00 00 00 00 00 - f0 fb 83 01 e6 7e f5 74 .............~.t 0183fb0c 60 02 00 00 68 02 00 00 - 01 00 00 00 04 00 00 00 `...h........... 0183fb1c 80 fd 83 01 78 f7 0a 00 - 7c fc 83 01 00 00 00 00 ....x...|....... 0183fb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff 68 02 00 00 ............h... 0183fb3c 60 02 00 00 00 00 00 00 - 00 00 07 00 90 fb 83 01 `............... 0183fb4c 17 20 01 00 80 fb 83 01 - 10 00 00 00 00 00 00 00 . .............. 0183fb5c 06 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 0183fb6c ff ff ff ff 01 00 00 00 - 00 69 0a 00 68 02 00 00 .........i..h... 0183fb7c 19 00 00 00 30 00 00 00 - 68 02 00 00 a0 41 c9 77 ....0...h....A.w 0183fb8c a0 41 c9 77 dc fb 83 01 - 95 2b f8 77 08 36 f8 77 .A.w.....+.w.6.w 0183fb9c ff ff ff ff ec fb 83 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 0183fbac a8 69 0a 00 24 00 00 00 - 00 00 00 00 68 fb 83 01 .i..$.......h... 0183fbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 0183fbcc 00 00 00 00 1c 00 00 00 - 84 fb 83 01 1c fb 83 01 ................ 0183fbdc 24 fc 83 01 44 fc 83 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0183fbec ff ff ff ff 54 fc 83 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 0183fbfc 84 fe 83 01 7c fc 83 01 - 80 fd 83 01 90 ff 83 01 ....|........... 线程 ID 0x290 的状态转储 eax=00000000 ebx=00000004 ecx=00000002 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=018bfd24 ebp=018bfd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0241d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 018BFD70 77E6A31D 018BFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 018BFFB4 77E687DD 00000005 000A451C 7FFDB000 000A5F68 kernel32!WaitForMultipleObjects 018BFFEC 00000000 777F21FE 000A5F68 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 018bfd24 b7 7a e6 77 04 00 00 00 - 48 fd 8b 01 01 00 00 00 .z.w....H....... 018bfd34 00 00 00 00 00 00 00 00 - 01 00 00 00 68 5f 0a 00 ............h_.. 018bfd44 01 00 00 00 f8 01 00 00 - fc 01 00 00 0c 02 00 00 ................ 018bfd54 d4 02 00 00 e2 7b 41 80 - 00 00 00 00 60 d9 46 80 .....{A.....`.F. 018bfd64 08 02 00 00 11 00 00 00 - 02 00 00 00 b4 ff 8b 01 ................ 018bfd74 1d a3 e6 77 48 fd 8b 01 - 01 00 00 00 00 00 00 00 ...wH........... 018bfd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 018bfd94 b0 fe 8b 01 00 00 00 00 - ff ff ff ff 68 5f 0a 00 ............h_.. 018bfda4 00 b0 fd 7f 1c 45 0a 00 - 00 00 00 00 e0 eb c4 bb .....E.......... 018bfdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 018bfdc4 23 00 00 00 23 00 00 00 - 1c 45 0a 00 00 b0 fd 7f #...#....E...... 018bfdd4 68 5f 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 h_...........!.w 018bfde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 018bfdf4 fc ff 8b 01 23 00 00 00 - 02 00 01 00 00 00 00 00 ....#........... 018bfe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 018bfe14 00 00 00 00 38 00 00 00 - 00 b2 fc 77 c3 77 f9 77 ....8......w.w.w 018bfe24 78 61 00 00 40 53 96 81 - 00 07 00 00 ae cc 44 80 xa..@S........D. 018bfe34 78 61 00 00 40 53 96 81 - 78 61 00 00 40 53 96 81 xa..@S..xa..@S.. 018bfe44 01 72 f9 7f 7c 13 00 00 - 41 d6 44 80 7c 13 00 00 .r..|...A.D.|... 018bfe54 d0 e4 39 81 00 70 f9 7f - fc 07 30 c0 00 00 00 00 ..9..p....0..... 线程 ID 0x634 的状态转储 eax=00000000 ebx=77f8316d ecx=0007c560 edx=00000000 esi=000a69f0 edi=0007c080 eip=77f83197 esp=0192ff78 ebp=0192ffa8 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0248d54b=00000000 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0192FFA8 787024DA 0007C0F8 0192FFEC 77E687DD 000AF5C8 ntdll!NtDelayExecution 0192FFB4 77E687DD 000AF5C8 00000000 00000000 000AF5C8 rpcrt4!NdrConformantArrayMemorySize 0192FFEC 00000000 787024C2 000AF5C8 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0192ff78 99 25 70 78 01 00 00 00 - 90 ff 92 01 00 00 00 00 .%px............ 0192ff88 00 00 00 00 c8 f5 0a 00 - 00 5d 1e ee ff ff ff ff .........]...... 0192ff98 00 5d 1e ee ff ff ff ff - 30 75 00 00 c8 f5 0a 00 .]......0u...... 0192ffa8 b4 ff 92 01 da 24 70 78 - f8 c0 07 00 ec ff 92 01 .....$px........ 0192ffb8 dd 87 e6 77 c8 f5 0a 00 - 00 00 00 00 00 00 00 00 ...w............ 0192ffc8 c8 f5 0a 00 00 90 fd 7f - 00 00 00 00 c0 ff 92 01 ................ 0192ffd8 00 00 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 0192ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 c2 24 70 78 .............$px 0192fff8 c8 f5 0a 00 00 00 00 00 - c8 00 00 00 00 01 00 00 ................ 01930008 ff ee ff ee 02 10 00 00 - 00 00 00 00 00 fe 00 00 ................ 01930018 00 00 10 00 00 20 00 00 - 00 02 00 00 00 20 00 00 ..... ....... .. 01930028 1f 00 00 00 ff ef fd 7f - 0c 00 08 06 00 00 00 00 ................ 01930038 00 00 00 00 00 00 00 00 - 00 00 00 00 98 05 93 01 ................ 01930048 0f 00 00 00 f8 ff ff ff - 50 00 93 01 50 00 93 01 ........P...P... 01930058 40 06 93 01 00 00 00 00 - 00 00 00 00 00 00 00 00 @............... 01930068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01930078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01930088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01930098 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019300a8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x134 的状态转储 eax=00000000 ebx=00000102 ecx=77b13600 edx=00000000 esi=77f8318c edi=0197ff74 eip=77f83197 esp=0197ff60 ebp=0197ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:024dd533=145e8950 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x140 的状态转储 eax=00000000 ebx=80020000 ecx=7ffd7000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=019cfe28 ebp=019cff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0252d3fb=ce8b1475 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019CFF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 019CFFA8 787024DA 0007C0F8 019CFFEC 77E687DD 000B3798 rpcrt4!NdrConformantArrayMemorySize 019CFFB4 77E687DD 000B3798 00000000 00000000 000B3798 rpcrt4!NdrConformantArrayMemorySize 019CFFEC 00000000 787024C2 000B3798 00000000 00905A4D kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 019cfe28 85 22 70 78 04 01 00 00 - 54 ff 9c 01 00 00 00 00 ."px....T....... 019cfe38 98 7d 83 05 58 ff 9c 01 - 80 c0 07 00 b0 46 0b 00 .}..X........F.. 019cfe48 6d 31 f8 77 00 00 00 00 - 00 00 00 00 00 00 00 00 m1.w............ 019cfe58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfe68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfe78 00 00 00 00 00 00 00 00 - 00 00 00 00 0b 15 00 00 ................ 019cfe88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfe98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfea8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfeb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfec8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cfef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cff08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cff18 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019cff28 00 00 00 00 60 5c 22 81 - a0 22 17 81 00 00 00 00 ....`\".."...... 019cff38 a0 22 17 81 30 24 17 81 - 64 9c 46 bc f3 da 42 80 ."..0$..d.F...B. 019cff48 a4 da 42 80 d4 4b 06 80 - 00 24 17 81 00 00 02 80 ..B..K...$...... 019cff58 00 a2 2f 4d ff ff ff ff - 50 fe 9c 01 00 00 02 80 ../M....P....... 线程 ID 0x534 的状态转储 eax=057f4c20 ebx=000cb0e8 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=01a3ff84 ebp=01a3ffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:0259d557=00000000 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:0259d557=00000000 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:0259d557=00000000 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:0259d557=00000000 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A3FFB4 77E687DD 74F55F4B 7FFDB000 00000000 000CB0E8 ntdll!ZwRemoveIoCompletion 01A3FFEC 00000000 74F54766 000CB0E8 00000000 01A400F6 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a3ff84 b8 47 f5 74 e4 02 00 00 - bc ff a3 01 b0 ff a3 01 .G.t............ 01a3ff94 a4 ff a3 01 28 2c f5 74 - 00 b0 fd 7f 00 00 00 00 ....(,.t........ 01a3ffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 68 2a a5 08 ...........th*.. 01a3ffb4 ec ff a3 01 dd 87 e6 77 - 4b 5f f5 74 00 b0 fd 7f .......wK_.t.... 01a3ffc4 00 00 00 00 e8 b0 0c 00 - 00 60 fd 7f 64 f7 87 01 .........`..d... 01a3ffd4 c0 ff a3 01 64 f7 87 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01a3ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01a3fff4 66 47 f5 74 e8 b0 0c 00 - 00 00 00 00 f6 00 a4 01 fG.t............ 01a40004 00 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01a40014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01a40024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a40034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01a40044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 03 00 00 ................ 01a40054 01 09 00 00 00 00 00 00 - 00 00 04 00 00 00 01 05 ................ 01a40064 00 00 00 00 01 01 05 00 - 00 00 00 00 06 00 00 00 ................ 01a40074 00 00 01 00 03 00 00 02 - 00 0b 00 00 00 00 00 00 ................ 01a40084 00 00 00 00 01 03 00 00 - 03 00 00 21 00 00 00 00 ...........!.... 01a40094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a400a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 01a400b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x544 的状态转储 eax=00000016 ebx=00000000 ecx=10020f54 edx=00000000 esi=00070608 edi=00000000 eip=77f83786 esp=01e9d4a0 ebp=01e9d510 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:029faa73=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01E9D510 77F85BD1 00070600 77FCB271 00070608 00000000 ntdll!NtWaitForSingleObject 01E9D6BC 77E6731E 00070000 00140000 00000034 0009EA64 ntdll!RtlIntegerToUnicodeString 01E9D708 76BC949A 00000000 00000034 00000034 76BC7102 kernel32!LocalAlloc 01E9D718 76BC7102 00000000 00000034 00000000 00000000 wininet!InternetSetOptionA 00000034 00000000 00000000 00000000 00000000 00000000 wininet!GetUrlCacheEntryInfoExA *----> 原始堆栈转储 <----* 01e9d4a0 55 5c f8 77 10 00 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 01e9d4b0 00 00 07 00 08 08 07 00 - 08 00 00 00 70 4c df 77 ............pL.w 01e9d4c0 04 08 00 00 00 01 00 00 - 12 00 00 00 20 25 9c 03 ............ %.. 01e9d4d0 12 00 00 00 00 d7 e9 01 - ce 6e df 77 20 25 9c 03 .........n.w %.. 01e9d4e0 12 00 00 00 18 d5 e9 01 - 08 00 00 00 70 39 f8 77 ............p9.w 01e9d4f0 00 00 07 00 08 08 07 00 - 08 00 00 00 00 00 00 00 ................ 01e9d500 f0 d4 e9 01 80 0d 00 00 - ac d6 e9 01 00 00 00 00 ................ 01e9d510 bc d6 e9 01 d1 5b f8 77 - 00 06 07 00 71 b2 fc 77 .....[.w....q..w 01e9d520 08 06 07 00 00 00 00 00 - 00 00 00 00 70 7f 9e 05 ............p... 01e9d530 68 08 7c 01 0a 00 00 00 - a0 1e 7c 01 2c d5 e9 01 h.|.......|.,... 01e9d540 00 05 00 00 e8 d6 e9 01 - 95 2b f8 77 b8 39 f8 77 .........+.w.9.w 01e9d550 ff ff ff ff f8 d6 e9 01 - 27 b2 fc 77 68 08 7c 01 ........'..wh.|. 01e9d560 2b 00 00 00 00 00 00 00 - 00 00 00 00 a0 d5 e9 01 +............... 01e9d570 3f 00 00 00 70 39 f8 77 - 00 00 07 00 58 12 07 00 ?...p9.w....X... 01e9d580 3f 00 00 00 08 7f 9e 05 - 78 d5 e9 01 80 1d 00 00 ?.......x....... 01e9d590 34 d7 e9 01 95 2b f8 77 - b8 39 f8 77 ff ff ff ff 4....+.w.9.w.... 01e9d5a0 44 d7 e9 01 27 b2 fc 77 - 58 12 07 00 00 00 00 00 D...'..wX....... 01e9d5b0 0e ea e6 77 80 00 00 00 - 00 00 00 00 22 00 fb 7f ...w........"... 01e9d5c0 2b 00 00 00 f8 d5 e9 01 - f9 94 e6 77 00 32 07 00 +..........w.2.. 01e9d5d0 01 00 00 00 12 df e9 01 - ac 79 a9 08 d7 79 a9 08 .........y...y.. 线程 ID 0x36c 的状态转储 eax=000000c0 ebx=0000003f ecx=023cef50 edx=00000000 esi=023cec00 edi=00000001 eip=77f837b2 esp=023cebe8 ebp=023cffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f2c1bb=ff325e61 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023CFFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 023CFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 023cebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 3c 02 01 00 00 00 ...w......<..... 023cebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 023cec08 60 03 00 00 6c 03 00 00 - 0f 00 00 00 0f 00 00 00 `...l........... 023cec18 64 03 00 00 34 03 00 00 - b0 03 00 00 c0 03 00 00 d...4........... 023cec28 d4 03 00 00 f4 03 00 00 - 04 04 00 00 18 04 00 00 ................ 023cec38 34 04 00 00 4c 04 00 00 - 5c 04 00 00 70 04 00 00 4...L...\...p... 023cec48 84 04 00 00 9c 04 00 00 - ac 04 00 00 00 00 00 00 ................ 023cec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023ceca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023cecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023ced08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023ced18 00 00 00 00 d0 be 0d 00 - b8 be 10 00 b8 bf 10 00 ................ 线程 ID 0x540 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=0240ff20 ebp=0240ff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f6d4f3=00000000 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0240FF6C 77E6A31D 0240FF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x4c4 的状态转储 eax=464c4c42 ebx=0000009f ecx=41454b48 edx=08a82430 esi=08a82430 edi=00070000 eip=77fcb3f5 esp=0248f1c8 ebp=0248f360 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: RtlAllocateHeap 77fcb3d3 0fb70e movzx ecx,word ptr [esi] ds:08a82430=463d 77fcb3d6 3bcb cmp ecx,ebx 77fcb3d8 72e5 jb NlsAnsiCodePage+0xa11 (77fd0abf) 77fcb3da 56 push esi 77fcb3db ff75a4 push dword ptr [ebp+0xa4] ss:02fec932=???????? 77fcb3de e89081fbff call RtlConsoleMultiByteToUnicodeN+0x348 (77f83573) 77fcb3e3 8b4608 mov eax,[esi+0x8] ds:095dfa02=542d746e 77fcb3e6 898594feffff mov [ebp+0xfffffe94],eax ss:0248f1f4=00000001 77fcb3ec 8b4e0c mov ecx,[esi+0xc] ds:095dfa02=542d746e 77fcb3ef 898d90feffff mov [ebp+0xfffffe90],ecx ss:0248f1f0=08a810e6 错误 ->77fcb3f5 8901 mov [ecx],eax ds:41454b48=???????? 77fcb3f7 894804 mov [eax+0x4],ecx ds:47022214=???????? 77fcb3fa 8a4605 mov al,[esi+0x5] ds:095dfa02=6e 77fcb3fd 8845c4 mov [ebp+0xc4],al ss:02fec932=?? 77fcb400 0fb716 movzx edx,word ptr [esi] ds:08a82430=463d 77fcb403 8b4da4 mov ecx,[ebp+0xa4] ss:02fec932=???????? 77fcb406 295128 sub [ecx+0x28],edx ds:41fb211a=???????? 77fcb409 8975d8 mov [ebp+0xd8],esi ss:02fec932=???????? 77fcb40c c6460501 mov byte ptr [esi+0x5],0x1 ds:095dfa02=6e 77fcb410 0fb71e movzx ebx,word ptr [esi] ds:08a82430=463d 77fcb413 8b4dbc mov ecx,[ebp+0xbc] ss:02fec932=???????? 77fcb416 2bd9 sub ebx,ecx *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0248F360 75A95ADD 00070000 00000000 000004EC 00000008 ntdll!RtlAllocateHeap 0248F394 75AFB71C 00000008 00000023 00000023 0248F3C4 mshtml! 0248F8DC 75AFB031 00000023 00000023 00000000 00000000 mshtml! 0248FD88 75AFAD04 08A96660 75AFAC66 0248FFA4 01A46258 mshtml! 0248FFA8 75B4008C 20786166 75636553 77E687DD 01A46258 mshtml! 0248FFEC 77E616E6 00000000 00000000 00000000 00000000 mshtml!MatchExactGetIDsOfNames 78616669 00000000 00000000 00000000 00000000 00000000 kernel32! *----> 原始堆栈转储 <----* 0248f1c8 08 00 00 00 f0 04 00 00 - ec 04 00 00 76 00 00 00 ............v... 0248f1d8 d8 0a a8 08 81 00 00 00 - 01 00 00 00 f0 05 ce 01 ................ 0248f1e8 01 01 00 00 ff b2 af 75 - e6 10 a8 08 01 00 00 00 .......u........ 0248f1f8 48 4b 45 41 42 4c 4c 46 - 5c 0f a8 08 f8 58 ab 08 HKEABLLF\....X.. 0248f208 48 63 a7 08 50 63 a7 08 - 00 04 00 00 08 08 00 00 Hc..Pc.......... 0248f218 b0 f0 48 02 00 59 ab 08 - dc ff 48 02 0a 00 00 00 ..H..Y....H..... 0248f228 d8 0a a8 08 0e 08 00 00 - a7 00 00 00 a7 00 00 00 ................ 0248f238 a7 00 00 00 54 f2 48 02 - 30 b5 af 75 d6 11 a8 08 ....T.H.0..u.... 0248f248 a7 00 00 00 d8 0a a8 08 - d8 0a a8 a7 70 f2 48 02 ............p.H. 0248f258 9f bf af 75 08 00 00 00 - d2 a2 ab 08 d8 0a a8 08 ...u............ 0248f268 50 63 a7 08 a7 00 00 00 - 98 f3 48 02 0a bc af 75 Pc........H....u 0248f278 0a 00 00 00 d2 a2 ab 08 - d8 0a a8 08 0b 00 00 00 ................ 0248f288 b0 03 07 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0248f298 00 00 00 00 10 50 c8 75 - 0f 2d a9 75 80 87 cf 01 .....P.u.-.u.... 0248f2a8 23 2d a9 75 10 50 c8 75 - 0c 00 00 00 01 00 00 00 #-.u.P.u........ 0248f2b8 58 50 c8 75 b2 39 df 77 - 62 07 27 00 02 80 00 00 XP.u.9.wb.'..... 0248f2c8 00 00 00 00 9c 5c f8 77 - 04 06 00 00 00 00 00 00 .....\.w........ 0248f2d8 80 49 ce 01 7e 5c f8 77 - 14 48 ce 01 0b 2e a9 75 .I..~\.w.H.....u 0248f2e8 14 48 ce 01 f8 8d c8 75 - 10 ac cf 01 0e 00 00 00 .H.....u........ 0248f2f8 14 48 ce 01 a8 f3 48 02 - 15 f0 ab 75 00 00 07 00 .H....H....u.... 线程 ID 0x568 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0271ff24 ebp=0271ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0327d4f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0271FF70 77E6A31D 0271FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0271FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0271FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0271ff24 b7 7a e6 77 02 00 00 00 - 48 ff 71 02 01 00 00 00 .z.w....H.q..... 0271ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0271ff44 00 00 00 00 44 05 00 00 - 40 05 00 00 a0 59 19 81 ....D...@....Y.. 0271ff54 40 58 19 81 80 ac c1 bb - 02 00 00 00 c8 aa 46 80 @X............F. 0271ff64 60 91 89 81 00 00 00 00 - 00 00 00 00 b4 ff 71 02 `.............q. 0271ff74 1d a3 e6 77 48 ff 71 02 - 01 00 00 00 00 00 00 00 ...wH.q......... 0271ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0271ff94 a4 ff 71 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..q............. 0271ffa4 44 05 00 00 40 05 00 00 - 00 00 00 00 00 00 00 00 D...@........... 0271ffb4 ec ff 71 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..q....w........ 0271ffc4 00 00 00 00 00 00 00 00 - 00 d0 f9 7f 45 00 00 00 ............E... 0271ffd4 c0 ff 71 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ..q.E.......V..w 0271ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0271fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02720004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02720014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02720024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02720034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02720044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02720054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x658 的状态转储 eax=00000000 ebx=0325ff70 ecx=00010101 edx=00000000 esi=77f8377b edi=00000304 eip=77f83786 esp=0325ff54 ebp=0325ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03dbd527=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0325FF78 77E67837 00000304 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x510 的状态转储 eax=00071e9c ebx=00000678 ecx=027c1858 edx=00000000 esi=032fff98 edi=77df7c12 eip=77df1d6b esp=032fff58 ebp=032fff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03e5d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03e5d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03e5d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 032FFF78 77535C36 032FFF98 00000000 00000000 00000000 user32!TranslateMessageEx 032FFFB4 77E687DD 00000678 77555428 00067CEC 00000678 winmm!midiOutGetNumDevs 032FFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x38c 的状态转储 eax=04f6fce8 ebx=80020000 ecx=00000000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=04f6fe28 ebp=04f6ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:05acd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04F6FF74 787020D9 78702528 0007E288 00000000 000B1D80 ntdll!NtReplyWaitReceivePortEx 04F6FFA8 787024DA 00115C60 04F6FFEC 77E687DD 00143D38 rpcrt4!NdrConformantArrayMemorySize 04F6FFB4 77E687DD 00143D38 00000000 000B1D80 00143D38 rpcrt4!NdrConformantArrayMemorySize 04F6FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x5cc 的状态转储 eax=0560f620 ebx=00000000 ecx=00000012 edx=00000000 esi=00070608 edi=00000000 eip=77f83786 esp=0560e89c ebp=0560e90c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0616be6f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0560E90C 77F85BD1 00070600 77FCB271 00070608 00000000 ntdll!NtWaitForSingleObject 0560EAB8 77A32099 00070000 00000000 00000016 77A320AB ntdll!RtlIntegerToUnicodeString 0560EAF4 7659D224 0560FC18 00000000 00000000 00000000 ole32!CoTaskMemFree 0560EB24 7659DA7D 0000000D 0560FC18 00000000 0570F6B8 urlmon!CoInternetCombineUrl 0560FCAC 7659D683 0570F6B8 00000000 00000000 00000004 urlmon!CoInternetCombineUrl 0560FCC4 7659D612 00000000 0570F6B8 7659D5EF 0560FD4C urlmon!CoInternetCombineUrl 0560FD30 7659D3D5 057FCFC0 0560FD4C 00000000 0570F6B8 urlmon!CoInternetCombineUrl 0560FD5C 7659D33A 00000005 00000000 0570F890 0570F6B8 urlmon!CoInternetCombineUrl 0560FDFC 7659C7C5 00000080 00000001 00CC0024 03931748 urlmon!CoInternetCombineUrl 0560FE18 76BCAD91 00CC0024 0570F6B8 00000064 0560FE40 urlmon!CoInternetCombineUrl 0560FF54 76BCD0AC 00000064 0560FE40 00000008 77F8316D wininet!InternetConnectA 0560FF84 77C59013 00000000 0183FA10 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 0560FFAC 77C58F85 77F82B95 77E687DD 00000000 0183FA10 shlwapi!Ordinal394 0560FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0560e89c 55 5c f8 77 10 00 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 0560e8ac 00 00 07 00 48 07 07 00 - 04 00 00 00 5c ea 60 05 ....H.......\.`. 0560e8bc 16 b5 fc 77 2d b5 fc 77 - 88 0f 85 03 00 00 00 00 ...w-..w........ 0560e8cc 00 00 00 00 2e 00 62 00 - 6a 00 2d 00 67 00 65 00 ......b.j.-.g.e. 0560e8dc 6d 00 2e 00 14 e9 60 05 - 04 00 00 00 70 39 f8 77 m.....`.....p9.w 0560e8ec 00 00 07 00 48 07 07 00 - 04 00 00 00 00 00 00 00 ....H........... 0560e8fc ec e8 60 05 80 33 00 00 - a8 ea 60 05 00 00 00 00 ..`..3....`..... 0560e90c b8 ea 60 05 d1 5b f8 77 - 00 06 07 00 71 b2 fc 77 ..`..[.w....q..w 0560e91c 08 06 07 00 00 00 00 00 - fc 88 e6 77 0b 00 00 00 ...........w.... 0560e92c 00 00 00 00 f8 4b fd 7f - 00 48 09 00 00 00 00 00 .....K...H...... 0560e93c 34 00 00 c0 57 3e f8 77 - 00 00 00 00 00 00 00 00 4...W>.w........ 0560e94c f8 4b fd 7f 60 e9 60 05 - 00 48 09 00 fc a4 f8 77 .K..`.`..H.....w 0560e95c 34 00 00 c0 c0 e9 60 05 - 74 77 e6 77 02 00 00 00 4.....`.tw.w.... 0560e96c f8 4b fd 7f ee 96 e6 77 - a7 96 e6 77 00 00 00 00 .K.....w...w.... 0560e97c 30 4b 59 76 a0 e9 60 05 - 34 30 c5 77 04 08 00 00 0KYv..`.40.w.... 0560e98c 01 00 00 00 69 6d 61 67 - 65 2f 67 69 66 00 59 76 ....image/gif.Yv 0560e99c ff ff ff ff 80 93 12 00 - 98 01 07 00 01 00 00 00 ................ 0560e9ac 30 be a5 08 00 00 00 00 - 00 00 00 00 78 ea 60 05 0...........x.`. 0560e9bc a5 0c bd 76 28 38 a8 08 - 01 00 00 00 84 ea 60 05 ...v(8........`. 0560e9cc 74 ea 60 05 00 00 00 00 - 01 00 00 00 30 be a5 08 t.`.........0... 线程 ID 0x620 的状态转储 eax=039fb980 ebx=00000002 ecx=08a5e830 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=05cffe5c ebp=05cffea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0685d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 05CFFEA8 77DF2A00 05CFFE80 00000001 00000000 05CFFEA0 ntdll!NtWaitForMultipleObjects 05CFFF04 77DF2A77 05CFFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 05CFFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 05CFFF74 77C58FFD 05CFFFA0 05CFFFA4 05CFFFA8 05CFFF9C shlwapi!Ordinal271 05CFFFAC 77C58F85 76BD1253 77E687DD 00000000 01E9CF6C shlwapi!Ordinal394 05CFFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x550 的状态转储 eax=00000000 ebx=00000000 ecx=04d723a8 edx=00000000 esi=0282a598 edi=00000000 eip=77df2268 esp=06a9ee64 ebp=06a9eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:075fc437=fbfcd500 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06A9EEA8 76DF217C 0083054A 06A9FFA4 0571BBB8 00000000 user32!WaitMessage 06A9EF30 76DF1F65 0571BBB8 00070718 00000000 0571BBB8 browseui!Ordinal102 06A9FFAC 76C66950 0571BBB8 77E687DD 0571BBB8 00070718 browseui!Ordinal102 06A9FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 06a9ee64 92 23 df 76 a4 ff a9 06 - b8 bb 71 05 00 00 00 00 .#.v......q..... 06a9ee74 80 06 10 01 02 80 00 00 - 00 00 00 00 00 00 00 00 ................ 06a9ee84 3a f8 2d 20 4c 01 00 00 - f3 00 00 00 98 52 07 00 :.- L........R.. 06a9ee94 01 00 00 00 98 a5 82 02 - 01 44 00 80 98 7d 87 03 .........D...}.. 06a9eea4 00 00 00 00 30 ef a9 06 - 7c 21 df 76 4a 05 83 00 ....0...|!.vJ... 06a9eeb4 a4 ff a9 06 b8 bb 71 05 - 00 00 00 00 00 00 00 00 ......q......... 06a9eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 06a9eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 06a9eee4 f4 ee a9 06 a4 ff a9 06 - 00 00 00 00 00 00 00 00 ................ 06a9eef4 00 00 00 00 00 00 00 00 - 20 ef a9 06 37 78 e6 77 ........ ...7x.w 06a9ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 06a9ef14 ff 02 fa 77 b4 ee a9 06 - 78 dd 06 00 dc ff a9 06 ...w....x....... 06a9ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff a9 06 Rz.vxi.v........ 06a9ef34 65 1f df 76 b8 bb 71 05 - 18 07 07 00 00 00 00 00 e..v..q......... 06a9ef44 b8 bb 71 05 00 00 00 00 - 00 00 00 00 00 00 00 00 ..q............. 06a9ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06a9ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06a9ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06a9ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06a9ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x80 的状态转储 eax=c00000a3 ebx=00000002 ecx=01010101 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=06b3fe5c ebp=06b3fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0769d42f=fffdd800 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06B3FEA8 77DF2A00 06B3FE80 00000001 00000000 06B3FEA0 ntdll!NtWaitForMultipleObjects 06B3FF04 77DF2A77 06B3FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 06B3FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 06B3FF74 77C58FFD 06B3FFA0 06B3FFA4 06B3FFA8 06B3FF9C shlwapi!Ordinal271 06B3FFAC 77C58F85 76BD1253 77E687DD 00000000 06A9B970 shlwapi!Ordinal394 06B3FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x3c8 的状态转储 eax=00000000 ebx=00000000 ecx=04da76e0 edx=00000000 esi=00070608 edi=00000000 eip=77f83786 esp=0719d93c ebp=0719d9ac iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:07cfaf0f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0719D9AC 77F85BD1 00070600 77FCB271 00070608 00000050 ntdll!NtWaitForSingleObject 0719DB58 77A32099 00070000 00000000 00000050 78FBD290 ntdll!RtlIntegerToUnicodeString 0719DB7C 78FBDAD2 00000050 04DA76E0 0575EE28 76C42D7A ole32!CoTaskMemFree 0719EC08 76C4D88D 0719EC5C 00008000 02517C5F 0575EE38 shell32!Ordinal18 0719EC70 025197DC 0719EC98 0719ECC4 75BDAE0E 04DE6E18 shdocvw!Ordinal174 0719ECDC 75BDB0FD 75BDA780 01CBE9C0 77E60013 0719ED8C ! 0719ED50 75BDA83A 01B775F0 75A91A52 01C85300 00000001 mshtml! 0719ED8C 77DF1D0A 00D305B8 00000BB7 0000633B 00000000 mshtml! 0719EDAC 77DF1BC8 75A918FC 00D305B8 00000113 0000633B user32!DispatchMessageW 0719EE38 77DF1CEF 0719EE74 00000000 76DD4C9F 0719EE74 user32!GetAppCompatFlags2 0719EE74 00000113 0000633B 00000000 202DF432 0000025C user32!DispatchMessageW *----> 原始堆栈转储 <----* 0719d93c 55 5c f8 77 10 00 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 0719d94c 00 00 07 00 98 08 07 00 - 0b 00 00 00 88 50 9a 03 .............P.. 0719d95c 00 00 00 00 ff ff ff ff - 98 d9 19 07 0b 00 00 00 ................ 0719d96c 70 39 f8 77 00 00 07 00 - 98 08 07 00 0b 00 00 00 p9.w............ 0719d97c b0 0b a6 08 b4 d9 19 07 - 0b 00 00 00 70 39 f8 77 ............p9.w 0719d98c 00 00 07 00 98 08 07 00 - 0b 00 00 00 00 00 00 00 ................ 0719d99c 8c d9 19 07 00 3e 00 00 - 48 db 19 07 00 00 00 00 .....>..H....... 0719d9ac 58 db 19 07 d1 5b f8 77 - 00 06 07 00 71 b2 fc 77 X....[.w....q..w 0719d9bc 08 06 07 00 50 00 00 00 - 88 50 9a 03 00 00 00 00 ....P....P...... 0719d9cc 45 43 a9 75 00 00 00 00 - 02 00 00 00 b0 81 7b 02 EC.u..........{. 0719d9dc d0 ab b5 01 25 39 aa 75 - 70 a1 b5 01 02 00 00 00 ....%9.up....... 0719d9ec 90 09 78 02 58 f2 7a 05 - 80 7c b7 01 00 00 00 00 ..x.X.z..|...... 0719d9fc a0 ab b5 01 4c db 19 07 - 02 00 00 00 b0 81 7b 02 ....L.........{. 0719da0c 80 7c b7 01 65 00 00 00 - 44 da 19 07 00 00 00 00 .|..e...D....... 0719da1c e5 38 f8 77 00 00 07 00 - a8 0b a6 08 00 00 00 00 .8.w............ 0719da2c 20 da 19 07 88 06 07 00 - d4 da 19 07 95 2b f8 77 ............+.w 0719da3c 20 39 f8 77 ff ff ff ff - e4 da 19 07 40 b7 fc 77 9.w........@..w 0719da4c 98 08 07 00 b0 0b a6 08 - 05 40 00 80 00 00 00 00 .........@...... 0719da5c 00 00 00 00 00 00 07 00 - 04 db 19 07 95 2b f8 77 .............+.w 0719da6c 20 39 f8 77 ff ff ff ff - 00 db 19 07 0b 00 00 00 9.w............ 线程 ID 0x2fc 的状态转储 eax=000021ff ebx=00000000 ecx=00000308 edx=00000000 esi=0016da10 edi=00000000 eip=77df2268 esp=07f8ee64 ebp=07f8eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:08aec437=01020101 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 07F8EEA8 76DF217C 01320566 07F8FFA4 02846A20 00000000 user32!WaitMessage 07F8EF30 76DF1F65 02846A20 00070718 00000000 02846A20 browseui!Ordinal102 07F8FFAC 76C66950 02846A20 77E687DD 02846A20 00070718 browseui!Ordinal102 07F8FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 07f8ee64 92 23 df 76 a4 ff f8 07 - 20 6a 84 02 00 00 00 00 .#.v.... j...... 07f8ee74 76 05 c2 00 13 01 00 00 - 02 10 00 00 1a 52 a9 75 v............R.u 07f8ee84 2a f8 2d 20 4c 01 00 00 - f3 00 00 00 98 52 07 00 *.- L........R.. 07f8ee94 01 00 00 00 10 da 16 00 - 01 44 00 80 60 a5 76 02 .........D..`.v. 07f8eea4 00 00 00 00 30 ef f8 07 - 7c 21 df 76 66 05 32 01 ....0...|!.vf.2. 07f8eeb4 a4 ff f8 07 20 6a 84 02 - 00 00 00 00 00 00 00 00 .... j.......... 07f8eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 07f8eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 07f8eee4 f4 ee f8 07 a4 ff f8 07 - 00 00 00 00 00 00 00 00 ................ 07f8eef4 00 00 00 00 00 00 00 00 - 20 ef f8 07 37 78 e6 77 ........ ...7x.w 07f8ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 07f8ef14 ff 02 fa 77 b4 ee f8 07 - 78 dd 06 00 dc ff f8 07 ...w....x....... 07f8ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff f8 07 Rz.vxi.v........ 07f8ef34 65 1f df 76 20 6a 84 02 - 18 07 07 00 00 00 00 00 e..v j.......... 07f8ef44 20 6a 84 02 00 00 00 00 - 00 00 00 00 00 00 00 00 j.............. 07f8ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 07f8ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 07f8ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 07f8ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 07f8ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x474 的状态转储 eax=0007a5dc ebx=00050003 ecx=000b5270 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=09dffe28 ebp=09dfff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0a95d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 09DFFF74 787020D9 78702528 0007E288 0192FA9C 00000022 ntdll!NtReplyWaitReceivePortEx 09DFFFA8 787024DA 0010BC60 09DFFFEC 77E687DD 059C4F50 rpcrt4!NdrConformantArrayMemorySize 09DFFFB4 77E687DD 059C4F50 0192FA9C 00000022 059C4F50 rpcrt4!NdrConformantArrayMemorySize 09DFFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x30c 的状态转储 eax=00000002 ebx=00000000 ecx=00000025 edx=00000000 esi=00070608 edi=00000000 eip=77f83786 esp=09e3c8cc ebp=09e3c93c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0a999e9f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 09E3C93C 77F85BD1 00070600 77FCB271 00070608 09E3CB50 ntdll!NtWaitForSingleObject 09E3CAE8 75A95ADD 00070000 00000000 00002000 09E3CB50 ntdll!RtlIntegerToUnicodeString 09E3CB58 75AF964A 00000001 01D909D0 01D90320 09E3CB80 mshtml! 09E3CB84 75AF95F1 01D909D0 00000000 01D90400 75AF953D mshtml! 09E3EBAC 75AE8029 09E3EC28 01D90320 01D90320 75ACEFD6 mshtml! 09E3EBF4 75AE7F92 09E3EC28 01D90B40 01CF0640 01D90320 mshtml! 09E3EC10 75AC0ED3 09E3EC28 01CF0570 01CF0590 00000001 mshtml! 09E3EC64 75AC8153 00000000 01CF04D0 00000000 202DF48D mshtml! 00000000 00000000 00000000 00000000 00000000 00000000 mshtml! *----> 原始堆栈转储 <----* 09e3c8cc 55 5c f8 77 10 00 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 09e3c8dc 00 00 07 00 00 20 00 00 - 01 04 00 00 68 00 74 00 ..... ......h.t. 09e3c8ec 74 00 70 00 3a 00 2f 00 - 2f 00 77 00 77 00 77 00 t.p.:././.w.w.w. 09e3c8fc 2e 00 62 00 6a 00 2d 00 - 67 00 65 00 6d 00 2e 00 ..b.j.-.g.e.m... 09e3c90c 63 00 6f 00 6d 00 2e 00 - 63 00 6e 00 2f 00 69 00 c.o.m...c.n./.i. 09e3c91c 6d 00 61 00 67 00 65 00 - 73 00 2f 00 64 00 74 00 m.a.g.e.s./.d.t. 09e3c92c 2e 00 67 00 00 00 07 00 - 00 00 07 00 00 00 00 00 ..g............. 09e3c93c e8 ca e3 09 d1 5b f8 77 - 00 06 07 00 71 b2 fc 77 .....[.w....q..w 09e3c94c 08 06 07 00 50 cb e3 09 - 00 20 00 00 00 20 00 00 ....P.... ... .. 09e3c95c 9c 45 a7 05 37 f7 c4 76 - 9c 45 a7 05 70 00 a9 05 .E..7..v.E..p... 09e3c96c c8 32 ac 08 88 45 a7 05 - 01 00 ef be 04 db e3 09 .2...E.......... 09e3c97c 70 f7 c4 76 70 00 a9 05 - c8 32 ac 08 ac c9 e3 09 p..vp....2...... 09e3c98c 24 08 00 00 ae f6 c4 76 - 88 45 a7 05 ac c9 e3 09 $......v.E...... 09e3c99c 01 00 00 00 b3 02 00 00 - 58 50 c8 75 05 00 00 00 ........XP.u.... 09e3c9ac 00 00 07 00 00 60 ab 08 - 00 00 07 00 00 60 ab 08 .....`.......`.. 09e3c9bc 37 08 00 00 46 bb fc 77 - 00 00 07 00 00 60 ab 08 7...F..w.....`.. 09e3c9cc 00 00 07 00 00 60 ab 08 - 01 04 00 00 46 bb fc 77 .....`......F..w 09e3c9dc 00 00 07 00 00 60 ab 08 - 00 60 ab 08 00 00 07 00 .....`...`...... 09e3c9ec 00 00 00 00 00 00 a5 08 - 00 00 a2 04 40 ca e3 09 ............@... 09e3c9fc 21 c2 fc 77 00 00 07 00 - 01 60 ab 08 00 00 00 00 !..w.....`...... 线程 ID 0x280 的状态转储 eax=00000240 ebx=77553780 ecx=04f25068 edx=00000000 esi=77553a78 edi=00000001 eip=77f837b2 esp=09ebff4c ebp=77f8313c iopl=0 nv up ei ng nz ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000296 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0aa1d51f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 77F8313C 8B000000 83042454 0F00147A 016F3E85 42FF9000 ntdll!NtWaitForMultipleObjects 180D8B64 00000000 00000000 00000000 00000000 00000000 线程 ID 0x2f8 的状态转储 eax=00000000 ebx=00000000 ecx=76bdbac0 edx=00000000 esi=00070608 edi=00000000 eip=77f83786 esp=0a5de2ec ebp=0a5de35c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0b13b8bf=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0A5DE35C 77F85BD1 00070600 77FCB271 00070608 0A5DE8BC ntdll!NtWaitForSingleObject 0A5DE508 77A32099 00070000 00000000 0000004E 77A320AB ntdll!RtlIntegerToUnicodeString 0A5DE544 7659292F 0A5DE8BC 00000003 00000000 00000000 ole32!CoTaskMemFree 0A5DE574 76592107 0A5DE8BC 00000003 00000000 00000000 urlmon!CoInternetGetSecurityUrl 0A5DE848 7659B6F0 00000000 0A5DE8BC 0A5DE880 00000001 urlmon!DllCanUnloadNow 0A5DE884 76BE8C6E 000CB6E0 0A5DE8BC 00001A02 0A5DEAC0 urlmon!UrlMkGetSessionOption 0A5DEAC4 76BE0917 0A5DE8BC 00000000 00000001 038686E0 wininet!GetUrlCacheConfigInfoW 0A5DFF14 76BCD92C 08A6D828 038686E0 00000001 08A6D828 wininet!GetUrlCacheEntryInfoW 0A5DFF30 76BCD16B 00000000 08A88988 038686E0 76BCD0EE wininet!InternetAutodial 0A5DFF84 77C59013 00000000 0183FA10 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 0A5DFFAC 77C58F85 77F82B95 77E687DD 00000000 0183FA10 shlwapi!Ordinal394 0A5DFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0a5de2ec 55 5c f8 77 10 00 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 0a5de2fc 00 00 07 00 98 08 07 00 - 0b 00 00 00 c6 63 d9 77 .............c.w 0a5de30c f0 e2 5d 0a 01 01 01 01 - dc ff 5d 0a 56 18 e8 77 ..].......].V..w 0a5de31c b0 75 e6 77 ff ff ff ff - 78 e5 5d 0a f3 71 c5 77 .u.w....x.]..q.w 0a5de32c b0 86 9d 05 64 e3 5d 0a - 0b 00 00 00 70 39 f8 77 ....d.].....p9.w 0a5de33c 00 00 07 00 98 08 07 00 - 0b 00 00 00 00 00 00 00 ................ 0a5de34c 3c e3 5d 0a 00 3e 00 00 - f8 e4 5d 0a 00 00 00 00 <.]..>....]..... 0a5de35c 08 e5 5d 0a d1 5b f8 77 - 00 06 07 00 71 b2 fc 77 ..]..[.w....q..w 0a5de36c 08 06 07 00 bc e8 5d 0a - 00 00 00 00 dc 50 5e 76 ......]......P^v 0a5de37c 95 2b f8 77 b8 39 f8 77 - ff ff ff ff 2c e5 5d 0a .+.w.9.w....,.]. 0a5de38c 27 b2 fc 77 98 08 07 00 - bc e8 5d 0a 00 00 00 00 '..w......]..... 0a5de39c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0a5de3ac 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0a5de3bc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0a5de3cc 00 00 00 00 00 00 00 00 - 00 00 00 00 f8 e3 5d 0a ..............]. 0a5de3dc 34 30 c5 77 04 08 00 00 - 01 00 00 10 b0 0b a6 08 40.w............ 0a5de3ec 04 00 00 00 c0 7e c5 77 - 04 00 00 00 44 e4 5d 0a .....~.w....D.]. 0a5de3fc 07 44 c5 77 01 00 00 10 - fb 80 e6 77 ba 0b a6 08 .D.w.......w.... 0a5de40c 01 10 04 80 64 e5 5d 0a - a0 e5 5d 0a 0c e4 5d 0a ....d.]...]...]. 0a5de41c ba 0b a6 08 dc ff 5d 0a - 56 18 e8 77 18 81 e6 77 ......].V..w...w 线程 ID 0x61c 的状态转储 eax=00000060 ebx=00000002 ecx=000a2d78 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0a61fe5c ebp=0a61fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0b17d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0A61FEA8 77DF2A00 0A61FE80 00000001 00000000 0A61FEA0 ntdll!NtWaitForMultipleObjects 0A61FF04 77DF2A77 0A61FED0 77C941C0 0000EA50 00000041 user32!MsgWaitForMultipleObjectsEx 0A61FF20 77C564FF 00000001 77C941C0 00000000 0000EA50 user32!MsgWaitForMultipleObjects 0A61FF74 77C58FFD 0A61FFA0 0A61FFA4 0A61FFA8 0A61FF9C shlwapi!Ordinal271 0A61FFAC 77C58F85 77F82B95 77E687DD 00000000 0183FA10 shlwapi!Ordinal394 0A61FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1200) 时间: 2003-8-24 @ 18:30:25.250 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 904 Explorer.exe 1020 Rundll32.exe 1028 daemon.exe 1044 ccApp.exe 1092 RealPlay.exe 1108 internat.exe 1008 AcroTray.exe 1412 RUNDLL32.exe 1424 RUNDLL32.exe 276 wuauclt.exe 1380 cthighway.exe 868 conime.exe 1548 XDICT.exe 1200 iexplore.exe 764 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (015D0000 - 015D8000) (01620000 - 01630000) (01740000 - 0175C000) (01760000 - 01779000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (770F0000 - 772ED000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (019A0000 - 019B7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (01F80000 - 01F9B000) (020B0000 - 020CE000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (02480000 - 0260D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (68EF0000 - 68F0F000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (76DB0000 - 76DC1000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (6AC80000 - 6ACBC000) 线程 ID 0x5e0 的状态转储 eax=772f2f3a ebx=00000000 ecx=0006dab4 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 01DD01FE 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 52 05 af 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 R............... 0006dd68 52 a9 8f 20 5b 01 00 00 - ed 00 00 00 00 00 00 00 R.. [........... 0006dd78 04 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 fe 01 dd 01 ........|!.v.... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x280 的状态转储 eax=000003e5 ebx=77f8377b ecx=00000000 edx=00000000 esi=00000000 edi=00000001 eip=77f83786 esp=0184facc ebp=0184fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:023ad09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0184FB04 74F57EE6 000001E8 000001EC 00000001 00000004 ntdll!NtWaitForSingleObject 0184FBF0 74FB1DA9 00000001 0184FE84 0184FC7C 0184FD80 msafd!WSPSetSockOpt 0184FC54 76BD6F2E 00000001 0184FE84 0184FC7C 0184FD80 ws2_32!select 0184FFB0 76BD6E24 77E687DD 000A2E18 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0184FFEC 00000000 76BD6E1B 000A2E18 00000000 FF000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0184facc 62 bb f5 74 e8 01 00 00 - 01 00 00 00 f0 fa 84 01 b..t............ 0184fadc 84 fe 84 01 78 fb 84 01 - 68 fb 84 01 82 53 a9 b8 ....x...h....S.. 0184faec 2a 6a c3 01 c0 b4 b3 ff - ff ff ff ff c8 3d 0a 00 *j...........=.. 0184fafc 00 00 00 00 00 00 00 00 - f0 fb 84 01 e6 7e f5 74 .............~.t 0184fb0c e8 01 00 00 ec 01 00 00 - 01 00 00 00 04 00 00 00 ................ 0184fb1c 80 fd 84 01 a0 67 0a 00 - 7c fc 84 01 00 00 00 00 .....g..|....... 0184fb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff c8 3d 0a 00 .............=.. 0184fb3c e8 01 00 00 00 00 00 00 - e8 fb 84 01 01 00 00 00 ................ 0184fb4c 00 00 00 00 a0 00 00 00 - 03 01 00 00 00 00 00 00 ................ 0184fb5c 00 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 0184fb6c ff ff ff ff 01 00 00 00 - 00 fb 84 01 ec 01 00 00 ................ 0184fb7c 19 00 00 00 c0 11 f5 74 - ff ff ff ff c4 fb 84 01 .......t........ 0184fb8c 65 12 fb 74 30 02 00 00 - e8 fb 84 01 01 00 00 00 e..t0........... 0184fb9c 00 fc 84 01 fc fb 84 01 - 00 00 00 00 c4 fb 84 01 ................ 0184fbac c8 3d 0a 00 33 27 00 00 - 00 00 00 00 68 fb 84 01 .=..3'......h... 0184fbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 0184fbcc 30 02 00 00 e8 fb 84 01 - 84 fb 84 01 1c fb 84 01 0............... 0184fbdc 24 fc 84 01 44 fc 84 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0184fbec ff ff ff ff 54 fc 84 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 0184fbfc 84 fe 84 01 7c fc 84 01 - 80 fd 84 01 90 ff 84 01 ....|........... 线程 ID 0x2f8 的状态转储 eax=00000000 ebx=00000004 ecx=00000002 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=018cfd24 ebp=018cfd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0242d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 018CFD70 77E6A31D 018CFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 018CFFB4 77E687DD 00000005 0009EA34 7FFDB000 000A59A0 kernel32!WaitForMultipleObjects 018CFFEC 00000000 777F21FE 000A59A0 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 018cfd24 b7 7a e6 77 04 00 00 00 - 48 fd 8c 01 01 00 00 00 .z.w....H....... 018cfd34 00 00 00 00 00 00 00 00 - 01 00 00 00 a0 59 0a 00 .............Y.. 018cfd44 01 00 00 00 04 02 00 00 - 08 02 00 00 18 02 00 00 ................ 018cfd54 d0 02 00 00 e2 7b 41 80 - 00 00 00 00 60 d9 46 80 .....{A.....`.F. 018cfd64 14 02 00 00 11 00 00 00 - 02 00 00 00 b4 ff 8c 01 ................ 018cfd74 1d a3 e6 77 48 fd 8c 01 - 01 00 00 00 00 00 00 00 ...wH........... 018cfd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 018cfd94 b0 fe 8c 01 00 00 00 00 - ff ff ff ff a0 59 0a 00 .............Y.. 018cfda4 00 b0 fd 7f 34 ea 09 00 - 00 00 00 00 e0 9b db bf ....4........... 018cfdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 018cfdc4 23 00 00 00 23 00 00 00 - 34 ea 09 00 00 b0 fd 7f #...#...4....... 018cfdd4 a0 59 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 .Y...........!.w 018cfde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 018cfdf4 fc ff 8c 01 23 00 00 00 - 02 00 01 00 00 00 00 00 ....#........... 018cfe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 018cfe14 00 00 00 00 3d 00 00 00 - 00 b2 fc 77 c3 77 f9 77 ....=......w.w.w 018cfe24 40 6e 00 00 00 86 97 81 - 00 07 00 00 ae cc 44 80 @n............D. 018cfe34 40 6e 00 00 00 86 97 81 - 40 6e 00 00 00 86 97 81 @n......@n...... 018cfe44 01 32 f9 7f 17 14 00 00 - 41 d6 44 80 17 14 00 00 .2......A.D..... 018cfe54 30 5d 22 81 00 30 f9 7f - fc 07 30 c0 00 00 00 00 0]"..0....0..... 线程 ID 0x3c8 的状态转储 eax=000000c0 ebx=0000003f ecx=0239ef50 edx=00000000 esi=0239ec00 edi=00000001 eip=77f837b2 esp=0239ebe8 ebp=0239ffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02efc1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0239FFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 0239FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0239ebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 39 02 01 00 00 00 ...w......9..... 0239ebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 0239ec08 58 03 00 00 c8 03 00 00 - 0f 00 00 00 0f 00 00 00 X............... 0239ec18 5c 03 00 00 2c 03 00 00 - a8 03 00 00 b8 03 00 00 \...,........... 0239ec28 cc 03 00 00 f0 03 00 00 - 00 04 00 00 14 04 00 00 ................ 0239ec38 2c 04 00 00 44 04 00 00 - 54 04 00 00 68 04 00 00 ,...D...T...h... 0239ec48 7c 04 00 00 94 04 00 00 - a4 04 00 00 00 00 00 00 |............... 0239ec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239eca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ed18 00 00 00 00 48 ce 0d 00 - 40 cd 10 00 40 ce 10 00 ....H...@...@... 线程 ID 0x658 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=023dff20 ebp=023dff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02f3d4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023DFF6C 77E6A31D 023DFF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x568 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=026dff24 ebp=026dff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0323d4f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 026DFF70 77E6A31D 026DFF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 026DFFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 026DFFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 026dff24 b7 7a e6 77 02 00 00 00 - 48 ff 6d 02 01 00 00 00 .z.w....H.m..... 026dff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 026dff44 00 00 00 00 24 05 00 00 - 20 05 00 00 80 74 28 81 ....$... ....t(. 026dff54 20 73 28 81 06 b2 af 75 - 00 20 50 c0 50 c2 9b 81 s(....u. P.P... 026dff64 50 c2 9b 81 00 00 00 00 - 00 00 00 00 b4 ff 6d 02 P.............m. 026dff74 1d a3 e6 77 48 ff 6d 02 - 01 00 00 00 00 00 00 00 ...wH.m......... 026dff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 026dff94 a4 ff 6d 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..m............. 026dffa4 24 05 00 00 20 05 00 00 - 00 00 00 00 00 00 00 00 $... ........... 026dffb4 ec ff 6d 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..m....w........ 026dffc4 00 00 00 00 00 00 00 00 - 00 e0 f9 7f 45 00 00 00 ............E... 026dffd4 c0 ff 6d 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ..m.E.......V..w 026dffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 026dfff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 026e0004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 026e0014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 026e0024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 026e0034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 026e0044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 026e0054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x38c 的状态转储 eax=208f9d4f ebx=0378ff70 ecx=01bca730 edx=00000000 esi=77f8377b edi=000005e4 eip=77f83786 esp=0378ff54 ebp=0378ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:042ed527=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0378FF78 77E67837 000005E4 00000013 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000013 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 0378ff54 0f 78 e6 77 e4 05 00 00 - 00 00 00 00 70 ff 78 03 .x.w........p.x. 0378ff64 d4 ef 31 05 a0 1d a8 01 - 52 a9 8f 20 d0 19 fd ff ..1.....R.. .... 0378ff74 ff ff ff ff 13 00 00 00 - 37 78 e6 77 e4 05 00 00 ........7x.w.... 0378ff84 13 00 00 00 00 00 00 00 - 04 a1 bd 75 e4 05 00 00 ...........u.... 0378ff94 13 00 00 00 a0 1d a8 01 - ec ff 78 03 5d 28 df 77 ..........x.](.w 0378ffa4 a0 1d a8 01 00 00 00 00 - 9a f4 b2 75 50 05 9f 01 ...........uP... 0378ffb4 74 f4 b2 75 dd 87 e6 77 - a0 1d a8 01 5d 28 df 77 t..u...w....](.w 0378ffc4 50 05 9f 01 a0 1d a8 01 - 00 c0 f9 7f 50 05 9f 01 P...........P... 0378ffd4 c0 ff 78 03 50 05 9f 01 - ff ff ff ff 56 18 e8 77 ..x.P.......V..w 0378ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0378fff4 6b f4 b2 75 a0 1d a8 01 - 00 00 00 00 00 00 00 00 k..u............ 03790004 9f 00 13 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ................ 03790014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 03790024 ff ff ff 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03790034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 03790044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 03790054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03790064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 03790074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03790084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x4c4 的状态转储 eax=0009e7d8 ebx=80030001 ecx=00125698 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0390fe28 ebp=0390ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0446d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0390FF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0390FFA8 787024DA 000C8440 0390FFEC 77E687DD 00101688 rpcrt4!NdrConformantArrayMemorySize 0390FFB4 77E687DD 00101688 00000000 00000000 00101688 rpcrt4!NdrConformantArrayMemorySize 0390FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x330 的状态转储 eax=0011bb44 ebx=80030001 ecx=0011bb44 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0394fe28 ebp=0394ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:044ad3fb=68002400 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0394FF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0394FFA8 787024DA 0007E260 0394FFEC 77E687DD 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 0394FFB4 77E687DD 0007E3B8 00000000 00000000 0007E3B8 rpcrt4!NdrConformantArrayMemorySize 0394FFEC 00000000 787024C2 0007E3B8 00000000 00905A4D kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0394fe28 85 22 70 78 04 01 00 00 - 54 ff 94 03 00 00 00 00 ."px....T....... 0394fe38 00 20 0a 05 58 ff 94 03 - 80 c0 07 00 60 e2 07 00 . ..X.......`... 0394fe48 b8 e3 07 00 01 d2 fd 7f - 4a 01 00 00 41 d6 44 80 ........J...A.D. 0394fe58 4a 01 00 00 b0 25 36 81 - 00 d0 fd 7f fc 07 30 c0 J....%6.......0. 0394fe68 00 00 00 00 00 00 00 00 - 4a 01 00 00 00 00 00 00 ........J....... 0394fe78 00 00 00 00 01 00 00 00 - 00 00 00 00 b2 64 00 00 .............d.. 0394fe88 fc 07 30 c0 38 6c 44 bc - c8 d4 44 80 00 d0 fd 7f ..0.8lD...D..... 0394fe98 00 00 00 00 00 00 00 00 - 00 d0 fd 7f 88 a2 2c 81 ..............,. 0394fea8 01 26 36 81 eb 51 45 80 - 68 2b 8d 81 68 2b 8d 81 .&6..QE.h+..h+.. 0394feb8 80 3e f2 e2 e0 24 36 81 - c8 24 36 81 ec 6b 44 bc .>...$6..$6..kD. 0394fec8 03 00 36 81 0a b0 46 80 - 30 6b 89 81 ac 3e f2 e2 ..6...F.0k...>.. 0394fed8 88 3e f2 e2 84 18 16 81 - 01 00 00 00 01 00 00 00 .>.............. 0394fee8 50 3a 72 81 01 00 00 00 - f7 b2 45 01 70 6c 44 bc P:r.......E.plD. 0394fef8 e2 ac 46 80 02 00 00 00 - 00 00 00 00 84 18 16 81 ..F............. 0394ff08 84 18 16 81 e0 24 36 81 - 60 4e 00 e1 1b 55 45 80 .....$6.`N...UE. 0394ff18 00 00 00 82 00 00 00 02 - 64 6c 44 bc 04 22 49 80 ........dlD.."I. 0394ff28 88 9c 89 81 20 80 12 81 - 20 50 44 81 00 00 00 00 .... ... PD..... 0394ff38 20 50 44 81 b0 51 44 81 - 64 6c 44 bc f3 da 42 80 PD..QD.dlD...B. 0394ff48 a4 da 42 80 d4 4b 06 80 - 80 51 44 81 01 00 03 80 ..B..K...QD..... 0394ff58 00 a2 2f 4d ff ff ff ff - 50 fe 94 03 01 00 03 80 ../M....P....... 线程 ID 0x5c0 的状态转储 eax=027e8148 ebx=00000274 ecx=00071f38 edx=00000000 esi=039dff98 edi=77df7c12 eip=77df1d6b esp=039dff58 ebp=039dff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0453d52b=00000000 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0453d52b=00000000 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0453d52b=00000000 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 039DFF78 77535C36 039DFF98 00000000 00000000 00000000 user32!TranslateMessageEx 039DFFB4 77E687DD 00000274 77555428 00063E34 00000274 winmm!midiOutGetNumDevs 039DFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x80 的状态转储 eax=00000000 ebx=000fd4a0 ecx=03a1ffdc edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=03a1ff84 ebp=03a1ffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:0457d557=???????? 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:0457d557=???????? 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:0457d557=???????? 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:0457d557=???????? 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03A1FFB4 77E687DD 74F55F4B 7FFD8000 00000000 000FD4A0 ntdll!ZwRemoveIoCompletion 03A1FFEC 00000000 74F54766 000FD4A0 00000000 00000008 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 03a1ff84 b8 47 f5 74 e0 02 00 00 - bc ff a1 03 b0 ff a1 03 .G.t............ 03a1ff94 a4 ff a1 03 28 2c f5 74 - 00 80 fd 7f 00 00 00 00 ....(,.t........ 03a1ffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 60 06 d3 06 ...........t`... 03a1ffb4 ec ff a1 03 dd 87 e6 77 - 4b 5f f5 74 00 80 fd 7f .......wK_.t.... 03a1ffc4 00 00 00 00 a0 d4 0f 00 - 00 60 fd 7f 64 f7 99 03 .........`..d... 03a1ffd4 c0 ff a1 03 64 f7 99 03 - ff ff ff ff 56 18 e8 77 ....d.......V..w 03a1ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 03a1fff4 66 47 f5 74 a0 d4 0f 00 - 00 00 00 00 08 00 00 00 fG.t............ 03a20004 02 01 00 00 ee ff ee ff - 00 00 00 00 00 00 07 00 ................ 03a20014 00 00 00 00 00 00 a2 03 - 00 02 00 00 40 00 a2 03 ............@... 03a20024 00 00 c2 03 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03a20034 00 00 00 00 40 00 a2 03 - 00 00 00 00 71 01 08 00 ....@.......q... 03a20044 02 01 0c 00 71 4d cf 7d - 26 ce 92 16 c4 98 1e c8 ....qM.}&....... 03a20054 87 1c d1 85 13 c5 87 20 - d5 8d 07 e3 86 19 d3 86 ....... ........ 03a20064 19 d3 86 19 d3 86 19 d3 - 86 19 d3 86 19 d3 86 19 ................ 03a20074 d3 86 19 d3 86 19 d3 86 - 19 d3 86 19 d3 86 19 d3 ................ 03a20084 86 19 d3 86 19 d3 86 19 - d3 86 19 d3 86 19 d3 86 ................ 03a20094 19 d3 86 19 d3 86 19 d3 - 86 19 d3 86 19 d3 86 19 ................ 03a200a4 d3 86 19 d3 86 19 d3 86 - 19 d3 86 19 d3 86 19 d3 ................ 03a200b4 86 19 d3 86 19 d3 86 19 - d3 86 19 d3 86 19 d3 86 ................ 线程 ID 0x578 的状态转储 eax=00000008 ebx=03c5ff74 ecx=06f175c4 edx=00000000 esi=77f8377b edi=000004d0 eip=77f83786 esp=03c5ff58 ebp=03c5ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:047bd52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03C5FF7C 77E67837 000004D0 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 03c5ff58 0f 78 e6 77 d0 04 00 00 - 00 00 00 00 74 ff c5 03 .x.w........t... 03c5ff68 00 00 00 00 70 39 a9 01 - 3c 31 f8 77 00 44 5f 9a ....p9..<1.w.D_. 03c5ff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 d0 04 00 00 ....m1.w7x.w.... 03c5ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 d0 04 00 00 .'......k..u.... 03c5ff98 c0 27 09 00 00 00 00 00 - 70 39 a9 01 ec ff c5 03 .'......p9...... 03c5ffa8 70 39 a9 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 p9.....u).Yvt..u 03c5ffb8 dd 87 e6 77 70 39 a9 01 - 00 00 00 00 29 dd 59 76 ...wp9......).Yv 03c5ffc8 70 39 a9 01 00 50 fd 7f - 04 06 00 00 c0 ff c5 03 p9...P.......... 03c5ffd8 04 06 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 03c5ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 03c5fff8 70 39 a9 01 00 00 00 00 - 80 03 00 00 00 10 00 00 p9.............. 03c60008 1d 00 00 00 37 00 00 00 - 1b 00 00 00 39 01 00 00 ....7.......9... 03c60018 6a 0f 00 00 51 05 00 00 - 6d 00 00 00 57 00 00 00 j...Q...m...W... 03c60028 30 0e c6 03 30 00 c6 03 - 00 00 00 00 28 77 df 06 0...0.......(w.. 03c60038 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03c60048 00 00 00 00 d8 8d c6 06 - 00 00 00 00 d0 49 c6 06 .............I.. 03c60058 00 00 00 00 00 00 00 00 - 40 78 e0 0c 00 00 00 00 ........@x...... 03c60068 00 00 00 00 00 00 00 00 - b0 69 2a 0d 00 00 00 00 .........i*..... 03c60078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03c60088 50 7d cd 06 00 00 00 00 - 00 00 00 00 00 00 00 00 P}.............. 线程 ID 0x5cc 的状态转储 eax=01960c54 ebx=03cbff74 ecx=06e9c528 edx=00000000 esi=77f8377b edi=000001d8 eip=77f83786 esp=03cbff58 ebp=03cbff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0481d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03CBFF7C 77E67837 000001D8 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x140 的状态转储 eax=00000000 ebx=80030001 ecx=80030001 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0537fe28 ebp=0537ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:05edd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0537FF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0537FFA8 787024DA 00117030 0537FFEC 77E687DD 0277B090 rpcrt4!NdrConformantArrayMemorySize 0537FFB4 77E687DD 0277B090 00000000 00000000 0277B090 rpcrt4!NdrConformantArrayMemorySize 0537FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x634 的状态转储 eax=0111058c ebx=00000000 ecx=00200013 edx=00000000 esi=02799f48 edi=00000000 eip=77df2268 esp=053bee64 ebp=053beea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:05f1c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 053BEEA8 76DF217C 01370596 053BFFA4 0279CA48 00000000 user32!WaitMessage 053BEF30 76DF1F65 0279CA48 00070718 00000000 0279CA48 browseui!Ordinal102 053BFFAC 76C66950 0279CA48 77E687DD 0279CA48 00070718 browseui!Ordinal102 053BFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 053bee64 92 23 df 76 a4 ff 3b 05 - 48 ca 79 02 00 00 00 00 .#.v..;.H.y..... 053bee74 56 06 c1 00 13 01 00 00 - 02 10 00 00 1a 52 a9 75 V............R.u 053bee84 42 a9 8f 20 5b 01 00 00 - ed 00 00 00 98 52 07 00 B.. [........R.. 053bee94 01 00 00 00 48 9f 79 02 - 01 44 00 80 38 10 12 00 ....H.y..D..8... 053beea4 00 00 00 00 30 ef 3b 05 - 7c 21 df 76 96 05 37 01 ....0.;.|!.v..7. 053beeb4 a4 ff 3b 05 48 ca 79 02 - 00 00 00 00 00 00 00 00 ..;.H.y......... 053beec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 053beed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 053beee4 f4 ee 3b 05 a4 ff 3b 05 - 00 00 00 00 00 00 00 00 ..;...;......... 053beef4 00 00 00 00 00 00 00 00 - 20 ef 3b 05 37 78 e6 77 ........ .;.7x.w 053bef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 053bef14 ff 02 fa 77 b4 ee 3b 05 - 78 dd 06 00 dc ff 3b 05 ...w..;.x.....;. 053bef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 3b 05 Rz.vxi.v......;. 053bef34 65 1f df 76 48 ca 79 02 - 18 07 07 00 00 00 00 00 e..vH.y......... 053bef44 48 ca 79 02 00 00 00 00 - 00 00 00 00 00 00 00 00 H.y............. 053bef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 053bef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 053bef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 053bef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 053bef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x510 的状态转储 eax=03b67d40 ebx=77553780 ecx=050b8dd0 edx=00000000 esi=77553a78 edi=00000001 eip=77f837b2 esp=0a37ff4c ebp=77f8313c iopl=0 nv up ei ng nz ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000296 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0aedd51f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 77F8313C 8B000000 83042454 0F00147A 016F3E85 42FF9000 ntdll!NtWaitForMultipleObjects 180D8B64 00000000 00000000 00000000 00000000 00000000 线程 ID 0x490 的状态转储 eax=01cc6d10 ebx=00000000 ecx=01cc6e30 edx=00000000 esi=77f8377b edi=00000148 eip=77f83786 esp=010ffe30 ebp=010ffe54 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:01c5d403=00000175 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 010FFE54 77E67837 00000148 FFFFFFFF 00000000 76BC164A ntdll!NtWaitForSingleObject 010FFE90 76BCCD9B 00000008 010FFF08 76BCCD88 00000008 kernel32!WaitForSingleObject 010FFF14 76BCDBF4 06C6C810 03B60C30 00000001 06C6C810 wininet!IncrementUrlCacheHeaderData 010FFF30 76BCD16B 00000000 05295B00 03B60C30 76BCD0EE wininet!InternetAutodial 010FFF84 77C59013 00000000 0184FA10 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 010FFFAC 77C58F85 77F82B95 77E687DD 00000000 0184FA10 shlwapi!Ordinal394 010FFFEC 00000000 77C58F5C 00000000 00000000 07070909 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 010ffe30 0f 78 e6 77 48 01 00 00 - 00 00 00 00 00 00 00 00 .x.wH........... 010ffe40 8c fe 0f 01 f0 74 08 00 - b0 2f 1f 05 f0 74 08 00 .....t.../...t.. 010ffe50 f0 74 08 00 90 fe 0f 01 - 37 78 e6 77 48 01 00 00 .t......7x.wH... 010ffe60 ff ff ff ff 00 00 00 00 - 4a 16 bc 76 48 01 00 00 ........J..vH... 010ffe70 ff ff ff ff c4 cb c6 06 - f0 74 08 00 e5 9e bc 76 .........t.....v 010ffe80 8c fe 0f 01 c4 cb c6 06 - 10 c8 c6 06 00 00 00 00 ................ 010ffe90 14 ff 0f 01 9b cd bc 76 - 08 00 00 00 08 ff 0f 01 .......v........ 010ffea0 88 cd bc 76 08 00 00 00 - 08 ff 0f 01 4d ca bc 76 ...v........M..v 010ffeb0 08 00 00 00 08 ff 0f 01 - 00 00 00 00 30 0c b6 03 ............0... 010ffec0 10 c8 c6 06 d4 fe 0f 01 - 9a 94 bc 76 00 00 00 00 ...........v.... 010ffed0 00 01 00 00 00 00 00 00 - f9 b4 bc 76 00 00 00 00 ...........v.... 010ffee0 00 01 00 00 00 00 00 00 - 28 cb c6 06 dc ca c6 06 ........(....... 010ffef0 30 ff 0f 01 10 c8 c6 06 - c6 b4 bc 76 10 00 00 00 0..........v.... 010fff00 dc ca c6 06 10 c8 c6 06 - a8 0f bd 76 02 00 00 00 ...........v.... 010fff10 30 0c b6 03 30 ff 0f 01 - f4 db bc 76 10 c8 c6 06 0...0......v.... 010fff20 30 0c b6 03 01 00 00 00 - 10 c8 c6 06 2e 01 00 00 0............... 010fff30 84 ff 0f 01 6b d1 bc 76 - 00 00 00 00 00 5b 29 05 ....k..v.....[). 010fff40 30 0c b6 03 ee d0 bc 76 - 30 0c b6 03 00 5b 29 05 0......v0....[). 010fff50 30 0c b6 03 01 00 00 00 - 49 d0 bc 76 00 5b 29 05 0.......I..v.[). 010fff60 8c ff 0f 01 80 ff 0f 01 - 6d 31 f8 77 a0 41 c9 77 ........m1.w.A.w 线程 ID 0x5e8 的状态转储 eax=029130d8 ebx=00000000 ecx=00000002 edx=00000000 esi=77f41bac edi=60010a2b eip=37f02d10 esp=02912fa4 ebp=0291302c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: xe_ExtTextOut 37f02cf0 55 push ebp 37f02cf1 8bec mov ebp,esp 37f02cf3 6aff push 0xff 37f02cf5 68a0a1f037 push 0x37f0a1a0 37f02cfa 682050f037 push 0x37f05020 37f02cff 64a100000000 mov eax,fs:[00000000] fs:00000000=???????? 37f02d05 50 push eax 37f02d06 64892500000000 mov fs:[00000000],esp fs:00000000=???????? 37f02d0d 83ec78 sub esp,0x78 错误 ->37f02d10 53 push ebx 37f02d11 56 push esi 37f02d12 57 push edi 37f02d13 e8e8e3ffff call 37f01100 37f02d18 a1989df037 mov eax,[37f09d98] ds:37f09d98=00000001 37f02d1d 85c0 test eax,eax 37f02d1f 0f8460010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d25 8b5d1c mov ebx,[ebp+0x1c] ss:034705fe=00000000 37f02d28 85db test ebx,ebx 37f02d2a 0f8455010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d30 8b7520 mov esi,[ebp+0x20] ss:034705fe=00000000 37f02d33 83fe01 cmp esi,0x1 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0291302C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029130E8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029131A4 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913260 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 0291331C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029133D8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913494 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913550 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 0291360C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029136C8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913784 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913840 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029138FC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029139B8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913A74 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913B30 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913BEC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913CA8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913D64 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913E20 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913EDC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02913F98 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914054 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914110 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029141CC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914288 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914344 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914400 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029144BC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914578 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914634 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029146F0 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029147AC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914868 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914924 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029149E0 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914A9C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914B58 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914C14 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914CD0 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914D8C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914E48 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914F04 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02914FC0 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 0291507C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915138 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029151F4 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029152B0 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 0291536C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915428 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029154E4 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029155A0 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 0291565C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915718 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029157D4 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915890 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 0291594C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915A08 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915AC4 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915B80 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915C3C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915CF8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915DB4 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915E70 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915F2C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02915FE8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029160A4 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916160 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 0291621C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029162D8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916394 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916450 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 0291650C 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029165C8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916684 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916740 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029167FC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029168B8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916974 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916A30 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916AEC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916BA8 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916C64 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916D20 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916DDC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916E98 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02916F54 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02917010 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029170CC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02917188 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02917244 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02917300 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029173BC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02917478 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02917534 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029175F0 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029176AC 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02917768 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 02917824 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut 029178E0 37F02EAB 60010A2B 00000000 00000000 00000002 !xe_ExtTextOut *----> 原始堆栈转储 <----* 02912fa4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02912fb4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02912fc4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02912fd4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02912fe4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02912ff4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02913004 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02913014 00 00 00 00 f0 2b 91 02 - d8 30 91 02 20 50 f0 37 .....+...0.. P.7 02913024 a0 a1 f0 37 ff ff ff ff - e8 30 91 02 ab 2e f0 37 ...7.....0.....7 02913034 2b 0a 01 60 00 00 00 00 - 00 00 00 00 02 00 00 00 +..`............ 02913044 e8 eb 94 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02913054 2b 0a 01 60 ac 1b f4 77 - 00 00 00 00 00 00 00 00 +..`...w........ 02913064 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02913074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02913084 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02913094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 029130a4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 029130b4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 029130c4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 029130d4 f0 2b 91 02 94 31 91 02 - 20 50 f0 37 a0 a1 f0 37 .+...1.. P.7...7 线程 ID 0x30c 的状态转储 eax=0523d2b8 ebx=00000002 ecx=0000000a edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=02a2fe5c ebp=02a2fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0358d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02A2FEA8 77DF2A00 02A2FE80 00000001 00000000 02A2FEA0 ntdll!NtWaitForMultipleObjects 02A2FF04 77DF2A77 02A2FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 02A2FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 02A2FF74 77C58FFD 02A2FFA0 02A2FFA4 02A2FFA8 02A2FF9C shlwapi!Ordinal271 02A2FFAC 77C58F85 77F82B95 77E687DD 00000000 0184FA10 shlwapi!Ordinal394 02A2FFEC 00000000 77C58F5C 00000000 00000000 00070050 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 02a2fe5c b7 7a e6 77 02 00 00 00 - 80 fe a2 02 01 00 00 00 .z.w............ 02a2fe6c 00 00 00 00 a0 fe a2 02 - 00 00 00 00 00 00 00 00 ................ 02a2fe7c 02 00 00 00 dc 01 00 00 - 24 06 00 00 00 00 00 00 ........$....... 02a2fe8c 00 00 00 00 e0 9e bd 06 - ab 00 bd 76 18 13 31 05 ...........v..1. 02a2fe9c 18 5b cc 06 00 ba 3c dc - ff ff ff ff 04 ff a2 02 .[....<......... 02a2feac 00 2a df 77 80 fe a2 02 - 01 00 00 00 00 00 00 00 .*.w............ 02a2febc a0 fe a2 02 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 02a2fecc 00 00 00 00 dc 01 00 00 - 24 06 00 00 a3 17 bc 76 ........$......v 02a2fedc 88 f4 f3 0c 30 ff a2 02 - f0 fd bc 76 e5 03 00 00 ....0......v.... 02a2feec ee d0 bc 76 40 bf b7 0c - 00 00 00 00 cc d6 f9 7f ...v@........... 02a2fefc 00 00 00 00 24 06 00 00 - 20 ff a2 02 77 2a df 77 ....$... ...w*.w 02a2ff0c d0 fe a2 02 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 02a2ff1c 00 00 00 00 74 ff a2 02 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 02a2ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 02a2ff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 58 7a 12 05 .....A.wm1.wXz.. 02a2ff4c 30 a2 30 05 58 7a 12 05 - 01 00 00 00 49 d0 bc 76 0.0.Xz......I..v 02a2ff5c 30 a2 30 05 8c ff a2 02 - 06 99 8f 20 a0 41 c9 77 0.0........ .A.w 02a2ff6c 60 ea 00 00 01 00 00 00 - ac ff a2 02 fd 8f c5 77 `..............w 02a2ff7c a0 ff a2 02 a4 ff a2 02 - a8 ff a2 02 9c ff a2 02 ................ 02a2ff8c 60 ea 00 00 10 fa 84 01 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x51c 的状态转储 eax=00000000 ebx=00003333 ecx=07c5e76c edx=00000000 esi=04d94f4c edi=00000000 eip=02493105 esp=07c5e710 ebp=07c5e740 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246 函数: 024930e7 83d000 adc eax,0x0 024930ea 8945f4 mov [ebp+0xf4],eax ss:087bbd12=???????? 024930ed 8b7910 mov edi,[ecx+0x10] ds:087bbd3e=???????? 024930f0 8b410c mov eax,[ecx+0xc] ds:087bbd3e=???????? 024930f3 037df4 add edi,[ebp+0xf4] ss:087bbd12=???????? 024930f6 8945f4 mov [ebp+0xf4],eax ss:087bbd12=???????? 024930f9 8b4614 mov eax,[esi+0x14] ds:058f251e=???????? 024930fc 897dec mov [ebp+0xec],edi ss:087bbd12=???????? 024930ff 8945f8 mov [ebp+0xf8],eax ss:087bbd12=???????? 02493102 8b45f8 mov eax,[ebp+0xf8] ss:087bbd12=???????? 02493105 8b5df4 mov ebx,[ebp+0xf4] ss:087bbd12=???????? 02493108 f7eb imul ebx 0249310a 0facd010 shrd eax,edx,0x10 0249310e 83d000 adc eax,0x0 02493111 8945fc mov [ebp+0xfc],eax ss:087bbd12=???????? 02493114 8b4114 mov eax,[ecx+0x14] ds:087bbd3e=???????? 02493117 33d2 xor edx,edx 02493119 0345fc add eax,[ebp+0xfc] ss:087bbd12=???????? 0249311c 8945f0 mov [ebp+0xf0],eax ss:087bbd12=???????? 0249311f 8b4604 mov eax,[esi+0x4] ds:058f251e=???????? 02493122 3bc2 cmp eax,edx 02493124 7513 jnz 02496a39 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 07C5E740 024A9235 00003333 00003333 07C5E76C 07C5E798 ! 07C5E760 024A2B93 04D9508C 00003333 00000000 00000000 ! 07C5E988 024A2DB5 07C5E9A4 04D94F28 00000096 07C5EA18 ! 07C5E9B4 024D7199 00000000 EB01066D 07C5EA8C 0D83CD38 ! 07C5E9EC 024D96D0 EB01066D 07C5EA28 00000069 0D83CD38 ! 07C5EA38 024CBCAA 07C5EA8C 0D83CD80 00000001 EB01066D ! 07C5EAD8 024CBA24 0000000F 00000000 00000000 07C5EB18 ! 07C5EAFC 024CE58A 00AD0730 0000000F 00000000 00000000 ! 07C5EB44 77DF1D0A 0D83CD80 0000000F 00000000 00000000 ! 07C5EB64 77DF2BCC 0D83CD88 00AD0730 0000000F 00000000 user32!DispatchMessageW 07C5EB80 77DF2B84 0049CB20 0000000F 00000000 00000000 user32!MsgWaitForMultipleObjects 07C5EBA8 77FA02FF 07C5EBB8 00000018 0049CB20 0000000F user32!MsgWaitForMultipleObjects 07C5EC10 024BBADE 00000001 0286A188 04D94938 01C8DAE0 ntdll!KiUserCallbackDispatcher 07C5EC50 024D9821 00000000 07C5EC7C 07C5ECA8 75BDAE0E ! 07C5ECC0 75BDB0FD 75BDA780 01C8DB30 00000013 0248062A ! 07C5ED34 75BDA5BE 75A930D8 01C71150 00000000 00008002 mshtml! 07C5ED6C 75A91A20 07C5EE74 07C5EE7C C0000000 00000000 mshtml! 07C5ED8C 77DF1D0A 018205A8 000007C5 00000000 00000000 mshtml! 07C5EDAC 77DF1BC8 75A918FC 018205A8 00008002 00000000 user32!DispatchMessageW 07C5EE38 77DF1CEF 07C5EE74 00000000 76DD4C9F 07C5EE74 user32!GetAppCompatFlags2 07C5EE74 00008002 00000000 00000000 208FA942 0000015B user32!DispatchMessageW *----> 原始堆栈转储 <----* 07c5e710 8c 50 d9 04 28 4f d9 04 - 4c 4f d9 04 33 33 00 00 .P..(O..LO..33.. 07c5e720 00 00 00 00 00 00 00 00 - 33 33 00 00 00 00 00 00 ........33...... 07c5e730 94 e7 c5 07 33 33 00 00 - 00 00 00 00 00 00 00 00 ....33.......... 07c5e740 60 e7 c5 07 35 92 4a 02 - 33 33 00 00 33 33 00 00 `...5.J.33..33.. 07c5e750 6c e7 c5 07 98 e7 c5 07 - 24 4f d9 04 f8 4e d9 04 l.......$O...N.. 07c5e760 88 e9 c5 07 93 2b 4a 02 - 8c 50 d9 04 33 33 00 00 .....+J..P..33.. 07c5e770 00 00 00 00 00 00 00 00 - 33 33 00 00 00 00 00 00 ........33...... 07c5e780 00 00 00 00 00 00 00 00 - 00 01 00 00 00 01 00 00 ................ 07c5e790 00 01 00 00 00 01 00 00 - 00 00 00 00 00 00 00 00 ................ 07c5e7a0 f8 4e d9 04 4c 50 d9 04 - 8c 50 d9 04 00 00 00 00 .N..LP...P...... 07c5e7b0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 01 ................ 07c5e7c0 5f 12 4a 02 b9 0e 4a 02 - ff 00 ff 00 ff 00 ff 00 _.J...J......... 07c5e7d0 00 00 00 00 00 80 00 80 - ff ff ff ff ff ff ff ff ................ 07c5e7e0 ff ff ff ff ff ff ff ff - ff ff ff ff ff ff ff ff ................ 07c5e7f0 ff ff ff ff ff ff ff ff - ff ff ff ff ff ff ff ff ................ 07c5e800 ff ff ff ff ff ff ff ff - ff ff ff ff ff ff ff ff ................ 07c5e810 ff ff ff ff ff ff ff ff - 00 00 00 00 00 00 00 00 ................ 07c5e820 7c e6 c5 07 74 e7 c5 07 - bb 18 d8 75 00 00 00 00 |...t......u.... 07c5e830 02 00 00 00 d0 35 67 03 - 60 e8 c5 07 00 00 00 00 .....5g.`....... 07c5e840 00 00 00 00 44 82 65 03 - 44 ea c5 07 58 ea c5 07 ....D.e.D...X... 发生应用程序意外错误: 应用程序: iexplore.exe (pid=536) 时间: 2003-8-25 @ 13:19:27.281 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 904 Explorer.exe 1020 Rundll32.exe 1028 daemon.exe 1044 ccApp.exe 1092 RealPlay.exe 1108 internat.exe 1008 AcroTray.exe 1412 RUNDLL32.exe 1424 RUNDLL32.exe 276 wuauclt.exe 1380 cthighway.exe 868 conime.exe 1548 XDICT.exe 536 iexplore.exe 876 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01680000 - 01688000) (016D0000 - 016E0000) (017F0000 - 0180C000) (01810000 - 01829000) (780C0000 - 78121000) (773A0000 - 773B5000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (770F0000 - 772ED000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01A80000 - 01A97000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (02110000 - 0212B000) (02240000 - 0225E000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (02A00000 - 02B8D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (76DB0000 - 76DC1000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (68EF0000 - 68F0F000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (6AC80000 - 6ACBC000) (759D0000 - 75A3B000) 线程 ID 0x630 的状态转储 eax=00000000 ebx=00000000 ecx=02bcd930 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 00F20134 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 4e 01 c3 04 13 01 00 00 - 02 10 00 00 1a 52 a9 75 N............R.u 0006dd68 a1 52 99 24 5b 01 00 00 - f7 00 00 00 00 00 00 00 .R.$[........... 0006dd78 07 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 34 01 f2 00 ........|!.v4... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x4b4 的状态转储 eax=000a3748 ebx=ffffffff ecx=000a3748 edx=00000000 esi=7fffffff edi=00000102 eip=77f83786 esp=018ffacc ebp=018ffb04 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0245d09f=00000000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 018FFB04 74F57EE6 000001E4 000005D0 00000000 00000004 ntdll!NtWaitForSingleObject 018FFBF0 74FB1DA9 00000002 018FFE84 018FFC7C 018FFD80 msafd!WSPSetSockOpt 018FFC54 76BD6F2E 00000002 018FFE84 018FFC7C 018FFD80 ws2_32!select 018FFFB0 76BD6E24 77E687DD 000A2A40 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 018FFFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 018ffacc d2 bc f5 74 e4 01 00 00 - 01 00 00 00 f0 fa 8f 01 ...t............ 018ffadc 84 fe 8f 01 78 fb 8f 01 - 68 fb 8f 01 f6 dc f3 72 ....x...h......r 018ffaec c8 6a c3 01 ff ff ff ff - ff ff ff 7f e0 39 0a 00 .j...........9.. 018ffafc 00 00 00 00 00 00 00 00 - f0 fb 8f 01 e6 7e f5 74 .............~.t 018ffb0c e4 01 00 00 d0 05 00 00 - 00 00 00 00 04 00 00 00 ................ 018ffb1c 80 fd 8f 01 d0 10 c1 04 - 7c fc 8f 01 c0 b4 b3 ff ........|....... 018ffb2c ff ff ff ff 80 90 e5 d0 - f7 ff ff ff e8 01 00 00 ................ 018ffb3c e4 01 00 00 00 00 00 00 - 00 00 07 00 90 fb 8f 01 ................ 018ffb4c 17 20 01 00 80 fb 8f 01 - 10 00 00 00 00 00 00 00 . .............. 018ffb5c 06 00 00 00 c0 b4 b3 ff - ff ff ff ff 40 45 99 d0 ............@E.. 018ffb6c f7 ff ff ff 03 00 00 00 - 00 39 0a 00 d0 05 00 00 .........9...... 018ffb7c 19 00 00 00 30 00 00 00 - e8 01 00 00 19 00 00 00 ....0........... 018ffb8c a0 41 c9 77 d0 05 00 00 - 02 01 00 00 08 36 f8 77 .A.w.........6.w 018ffb9c ff ff ff ff ec fb 8f 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 018ffbac e0 39 0a 00 24 00 00 00 - 01 00 00 00 68 fb 8f 01 .9..$.......h... 018ffbbc 44 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 D............... 018ffbcc 00 00 00 00 1c 00 00 00 - 9c fb 8f 01 1c fb 8f 01 ................ 018ffbdc 24 fc 8f 01 44 fc 8f 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 018ffbec ff ff ff ff 54 fc 8f 01 - a9 1d fb 74 02 00 00 00 ....T......t.... 018ffbfc 84 fe 8f 01 7c fc 8f 01 - 80 fd 8f 01 90 ff 8f 01 ....|........... 线程 ID 0x47c 的状态转储 eax=00000018 ebx=00000002 ecx=07a8bc48 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0193fe5c ebp=0193fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0249d42f=00000000 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0193FEA8 77DF2A00 0193FE80 00000001 00000000 0193FEA0 ntdll!NtWaitForMultipleObjects 0193FF04 77DF2A77 0193FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0193FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0193FF74 77C58FFD 0193FFA0 0193FFA4 0193FFA8 0193FF9C shlwapi!Ordinal271 0193FFAC 77C58F85 76BD1253 77E687DD 00000000 00070178 shlwapi!Ordinal394 0193FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x498 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffdb000 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=0197fd24 ebp=0197fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:024dd2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FD70 77E6A31D 0197FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0197FFB4 77E687DD 00000005 0009E65C 7FFDB000 000A5588 kernel32!WaitForMultipleObjects 0197FFEC 00000000 777F21FE 000A5588 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0197fd24 b7 7a e6 77 04 00 00 00 - 48 fd 97 01 01 00 00 00 .z.w....H....... 0197fd34 00 00 00 00 00 00 00 00 - 01 00 00 00 88 55 0a 00 .............U.. 0197fd44 01 00 00 00 04 02 00 00 - 08 02 00 00 18 02 00 00 ................ 0197fd54 d8 02 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0197fd64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff 97 01 ................ 0197fd74 1d a3 e6 77 48 fd 97 01 - 01 00 00 00 00 00 00 00 ...wH........... 0197fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 0197fd94 b0 fe 97 01 00 00 00 00 - ff ff ff ff 88 55 0a 00 .............U.. 0197fda4 00 b0 fd 7f 5c e6 09 00 - 00 00 00 00 38 00 00 00 ....\.......8... 0197fdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 0197fdc4 23 00 00 00 23 00 00 00 - 5c e6 09 00 00 b0 fd 7f #...#...\....... 0197fdd4 88 55 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 .U...........!.w 0197fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 0197fdf4 fc ff 97 01 23 00 00 00 - c0 00 00 00 78 b8 3e 81 ....#.......x.>. 0197fe04 4b 74 00 00 08 17 98 81 - 00 07 00 00 ae cc 44 80 Kt............D. 0197fe14 4b 74 00 00 08 17 98 81 - 4b 74 00 00 08 17 98 81 Kt......Kt...... 0197fe24 01 e2 f9 7f d4 0a 00 00 - 41 d6 44 80 d4 0a 00 00 ........A.D..... 0197fe34 10 0d 3a 81 00 e0 f9 7f - fc 07 30 c0 00 00 00 00 ..:.......0..... 0197fe44 00 00 00 00 d4 0a 00 00 - 00 00 00 00 00 00 00 00 ................ 0197fe54 01 00 00 00 00 00 00 00 - 00 f0 f9 7f fc 07 30 c0 ..............0. 线程 ID 0x648 的状态转储 eax=00000000 ebx=80030001 ecx=000b6590 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=019efe28 ebp=019eff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0254d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019EFF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 019EFFA8 787024DA 0007C0F8 019EFFEC 77E687DD 000AED40 rpcrt4!NdrConformantArrayMemorySize 019EFFB4 77E687DD 000AED40 00000000 00000000 000AED40 rpcrt4!NdrConformantArrayMemorySize 019EFFEC 00000000 787024C2 000AED40 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 019efe28 85 22 70 78 04 01 00 00 - 54 ff 9e 01 00 00 00 00 ."px....T....... 019efe38 38 41 a5 07 58 ff 9e 01 - 80 c0 07 00 d0 e7 0a 00 8A..X........... 019efe48 6d 31 f8 77 01 b2 fd 7f - a7 01 00 00 41 d6 44 80 m1.w........A.D. 019efe58 a7 01 00 00 50 31 28 81 - 00 b0 fd 7f fc 07 30 c0 ....P1(.......0. 019efe68 00 00 00 00 00 00 00 00 - a7 01 00 00 00 00 00 00 ................ 019efe78 00 00 00 00 01 00 00 00 - 00 00 00 00 39 0f 00 00 ............9... 019efe88 fc 07 30 c0 38 6c 44 bc - c8 d4 44 80 00 b0 fd 7f ..0.8lD...D..... 019efe98 00 00 00 00 00 00 00 00 - 00 b0 fd 7f a8 fd 35 81 ..............5. 019efea8 01 31 28 81 00 00 00 00 - 6c ff 1f c0 41 d6 44 80 .1(.....l...A.D. 019efeb8 e2 00 00 00 50 31 28 81 - 00 f0 b9 00 08 00 30 c0 ....P1(.......0. 019efec8 00 00 00 00 48 58 f7 e2 - e2 00 00 00 59 36 19 63 ....HX......Y6.c 019efed8 00 00 00 00 01 00 00 00 - 00 00 00 00 00 00 ba 00 ................ 019efee8 08 00 30 c0 00 b0 fd 7f - c8 d4 44 80 00 f0 b9 00 ..0.......D..... 019efef8 00 00 00 00 60 c7 18 81 - 01 00 00 00 50 3a 72 81 ....`.......P:r. 019eff08 60 bd 5a 81 80 30 28 81 - a8 63 7a e2 1b 55 45 80 `.Z..0(..cz..UE. 019eff18 00 00 00 82 00 00 00 02 - 64 6c 44 bc 04 22 49 80 ........dlD.."I. 019eff28 88 9c 89 81 a0 45 1a 81 - 80 8c 23 81 00 00 00 00 .....E....#..... 019eff38 80 8c 23 81 10 8e 23 81 - 64 6c 44 bc f3 da 42 80 ..#...#.dlD...B. 019eff48 a4 da 42 80 d4 4b 06 80 - e0 8d 23 81 01 00 03 80 ..B..K....#..... 019eff58 00 a2 2f 4d ff ff ff ff - 50 fe 9e 01 01 00 03 80 ../M....P....... 线程 ID 0x540 的状态转储 eax=00000000 ebx=00000102 ecx=77b13600 edx=00000000 esi=77f8318c edi=01a3ff74 eip=77f83197 esp=01a3ff60 ebp=01a3ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0259d533=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A3FF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x2d4 的状态转储 eax=78700ca8 ebx=80030001 ecx=00135978 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=01a7fe28 ebp=01a7ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:025dd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A7FF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 01A7FFA8 787024DA 0007C0F8 01A7FFEC 77E687DD 000B07E0 rpcrt4!NdrConformantArrayMemorySize 01A7FFB4 77E687DD 000B07E0 00000000 00000000 000B07E0 rpcrt4!NdrConformantArrayMemorySize 01A7FFEC 00000000 787024C2 000B07E0 00000000 00905A4D kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a7fe28 85 22 70 78 04 01 00 00 - 54 ff a7 01 00 00 00 00 ."px....T....... 01a7fe38 28 d4 97 04 58 ff a7 01 - 80 c0 07 00 98 df 0a 00 (...X........... 01a7fe48 6d 31 f8 77 00 00 00 00 - 00 00 00 00 00 00 00 00 m1.w............ 01a7fe58 00 00 00 00 00 00 00 00 - 03 00 00 00 00 00 00 00 ................ 01a7fe68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe78 00 00 00 00 00 00 00 00 - 00 00 00 00 3b 0f 00 00 ............;... 01a7fe88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fea8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7feb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fec8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7ff08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7ff18 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7ff28 00 00 00 00 a0 45 1a 81 - a0 a8 27 81 00 00 00 00 .....E....'..... 01a7ff38 a0 a8 27 81 30 aa 27 81 - 64 8c 01 bc f3 da 42 80 ..'.0.'.d.....B. 01a7ff48 a4 da 42 80 d4 4b 06 80 - 00 aa 27 81 01 00 03 80 ..B..K....'..... 01a7ff58 00 a2 2f 4d ff ff ff ff - 50 fe a7 01 01 00 03 80 ../M....P....... 线程 ID 0x398 的状态转储 eax=07955618 ebx=000c63a0 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=01aeff84 ebp=01aeffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:0264d557=???????? 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:0264d557=???????? 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:0264d557=???????? 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:0264d557=???????? 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AEFFB4 77E687DD 74F55F4B 7FFDB000 00000000 000C63A0 ntdll!ZwRemoveIoCompletion 01AEFFEC 00000000 74F54766 000C63A0 00000000 01AF00F5 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01aeff84 b8 47 f5 74 e8 02 00 00 - bc ff ae 01 b0 ff ae 01 .G.t............ 01aeff94 a4 ff ae 01 28 2c f5 74 - 00 b0 fd 7f 00 00 00 00 ....(,.t........ 01aeffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 b0 96 c7 04 ...........t.... 01aeffb4 ec ff ae 01 dd 87 e6 77 - 4b 5f f5 74 00 b0 fd 7f .......wK_.t.... 01aeffc4 00 00 00 00 a0 63 0c 00 - 00 60 fd 7f 64 f7 93 01 .....c...`..d... 01aeffd4 c0 ff ae 01 64 f7 93 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01aeffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01aefff4 66 47 f5 74 a0 63 0c 00 - 00 00 00 00 f5 00 af 01 fG.t.c.......... 01af0004 01 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01af0014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01af0024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01af0034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01af0044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 03 00 00 ................ 01af0054 01 05 00 00 00 00 01 03 - 00 00 02 00 02 00 01 01 ................ 01af0064 03 00 00 00 01 01 04 00 - 00 00 01 01 06 00 00 00 ................ 01af0074 00 00 01 05 00 00 00 00 - 01 0b 00 00 00 00 00 00 ................ 01af0084 00 00 00 00 01 03 00 00 - 02 00 00 21 00 00 00 00 ...........!.... 01af0094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01af00a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 01af00b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x568 的状态转储 eax=00000000 ebx=01f4ff74 ecx=01010101 edx=00000000 esi=77f8377b edi=000002fc eip=77f83786 esp=01f4ff58 ebp=01f4ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02aad52b=00004900 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F4FF7C 77E67837 000002FC 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B ADF00D0B ADF00D0B ADF00D0B ADF00D0B ADF00D0B ADF00D0B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f4ff58 0f 78 e6 77 fc 02 00 00 - 00 00 00 00 74 ff f4 01 .x.w........t... 01f4ff68 00 00 00 00 e0 1e af 01 - 3c 31 f8 77 00 44 5f 9a ........<1.w.D_. 01f4ff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 fc 02 00 00 ....m1.w7x.w.... 01f4ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 fc 02 00 00 .'......k..u.... 01f4ff98 c0 27 09 00 88 b0 06 00 - e0 1e af 01 ec ff f4 01 .'.............. 01f4ffa8 e0 1e af 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f4ffb8 dd 87 e6 77 e0 1e af 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f4ffc8 e0 1e af 01 00 50 fd 7f - 3f 08 00 00 c0 ff f4 01 .....P..?....... 01f4ffd8 3f 08 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ?.......V..w...w 01f4ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f4fff8 e0 1e af 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ........LCDT.... 01f50008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 01f50018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 01f50028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 01f50038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 01f50048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 01f50058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 01f50068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 01f50078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01f50088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x280 的状态转储 eax=000000c0 ebx=0000003f ecx=0252ef50 edx=00000000 esi=0252ec00 edi=00000001 eip=77f837b2 esp=0252ebe8 ebp=0252ffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0308c1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0252FFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 0252FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0252ebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 52 02 01 00 00 00 ...w......R..... 0252ebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 0252ec08 60 03 00 00 80 02 00 00 - 0f 00 00 00 0f 00 00 00 `............... 0252ec18 64 03 00 00 34 03 00 00 - b0 03 00 00 c0 03 00 00 d...4........... 0252ec28 d4 03 00 00 f4 03 00 00 - 04 04 00 00 18 04 00 00 ................ 0252ec38 30 04 00 00 48 04 00 00 - 58 04 00 00 6c 04 00 00 0...H...X...l... 0252ec48 80 04 00 00 98 04 00 00 - a8 04 00 00 00 00 00 00 ................ 0252ec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252eca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ed18 00 00 00 00 30 83 0e 00 - 68 9f 11 00 68 a0 11 00 ....0...h...h... 线程 ID 0x2f4 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=0256ff20 ebp=0256ff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:030cd4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0256FF6C 77E6A31D 0256FF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x3cc 的状态转储 eax=075d25dc ebx=025aff74 ecx=00000452 edx=00000000 esi=77f8377b edi=000004c0 eip=77f83786 esp=025aff58 ebp=025aff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0310d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 025AFF7C 77E67837 000004C0 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B ADF00D0B ADF00D0B ADF00D0B ADF00D0B ADF00D0B ADF00D0B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x290 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=02c5ff24 ebp=02c5ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:037bd4f7=666666ff 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02C5FF70 77E6A31D 02C5FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 02C5FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 02C5FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02c5ff24 b7 7a e6 77 02 00 00 00 - 48 ff c5 02 01 00 00 00 .z.w....H....... 02c5ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 02c5ff44 00 00 00 00 64 05 00 00 - 60 05 00 00 80 ba 1b 81 ....d...`....... 02c5ff54 20 b9 1b 81 06 b2 af 75 - 00 20 50 c0 50 c2 9b 81 ......u. P.P... 02c5ff64 50 c2 9b 81 00 00 00 00 - 00 00 00 00 b4 ff c5 02 P............... 02c5ff74 1d a3 e6 77 48 ff c5 02 - 01 00 00 00 00 00 00 00 ...wH........... 02c5ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 02c5ff94 a4 ff c5 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 02c5ffa4 64 05 00 00 60 05 00 00 - 00 00 00 00 00 00 00 00 d...`........... 02c5ffb4 ec ff c5 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 02c5ffc4 00 00 00 00 00 00 00 00 - 00 d0 f9 7f 45 00 00 00 ............E... 02c5ffd4 c0 ff c5 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ....E.......V..w 02c5ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02c5fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02c60004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02c60014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02c60024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02c60034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02c60044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02c60054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x51c 的状态转储 eax=00000005 ebx=032fff70 ecx=7ff9c000 edx=00000000 esi=77f8377b edi=000005dc eip=77f83786 esp=032fff54 ebp=032fff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03e5d527=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 032FFF78 77E67837 000005DC 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 032fff54 0f 78 e6 77 dc 05 00 00 - 00 00 00 00 70 ff 2f 03 .x.w........p./. 032fff64 bc dc 92 07 70 d3 b7 01 - a1 52 99 24 f0 d8 ff ff ....p....R.$.... 032fff74 ff ff ff ff 01 00 00 00 - 37 78 e6 77 dc 05 00 00 ........7x.w.... 032fff84 01 00 00 00 00 00 00 00 - 04 a1 bd 75 dc 05 00 00 ...........u.... 032fff94 01 00 00 00 70 d3 b7 01 - ec ff 2f 03 5d 28 df 77 ....p...../.](.w 032fffa4 70 d3 b7 01 00 00 00 00 - 9a f4 b2 75 10 05 44 01 p..........u..D. 032fffb4 74 f4 b2 75 dd 87 e6 77 - 70 d3 b7 01 5d 28 df 77 t..u...wp...](.w 032fffc4 10 05 44 01 70 d3 b7 01 - 00 c0 f9 7f 10 05 44 01 ..D.p.........D. 032fffd4 c0 ff 2f 03 10 05 44 01 - ff ff ff ff 56 18 e8 77 ../...D.....V..w 032fffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 032ffff4 6b f4 b2 75 70 d3 b7 01 - 00 00 00 00 00 00 00 00 k..up........... 03300004 9f 00 13 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ................ 03300014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 03300024 ff ff ff 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03300034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 03300044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 03300054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03300064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 03300074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03300084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x5d4 的状态转储 eax=00000000 ebx=00000002 ecx=7ff9b000 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0336fe5c ebp=0336fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:03ecd42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0336FEA8 77DF2A00 0336FE80 00000001 00000000 0336FEA0 ntdll!NtWaitForMultipleObjects 0336FF04 77DF2A77 0336FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0336FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0336FF74 77C58FFD 0336FFA0 0336FFA4 0336FFA8 0336FF9C shlwapi!Ordinal271 0336FFAC 77C58F85 77F82B95 77E687DD 00000000 018FFA10 shlwapi!Ordinal394 0336FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x5b4 的状态转储 eax=04cdf000 ebx=000005f8 ecx=033bf9c4 edx=00000000 esi=033bff98 edi=77df7c12 eip=77df1d6b esp=033bff58 ebp=033bff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03f1d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03f1d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03f1d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 033BFF78 77535C36 033BFF98 00000000 00000000 00000000 user32!TranslateMessageEx 033BFFB4 77E687DD 000005F8 77555428 00063E34 000005F8 winmm!midiOutGetNumDevs 033BFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x614 的状态转储 eax=000a3a08 ebx=00000002 ecx=000a2920 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0348fe5c ebp=0348fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:03fed42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0348FEA8 77DF2A00 0348FE80 00000001 00000000 0348FEA0 ntdll!NtWaitForMultipleObjects 0348FF04 77DF2A77 0348FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0348FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0348FF74 77C58FFD 0348FFA0 0348FFA4 0348FFA8 0348FF9C shlwapi!Ordinal271 0348FFAC 77C58F85 76BD1253 77E687DD 00000000 01F4CF6C shlwapi!Ordinal394 0348FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x3c8 的状态转储 eax=00000103 ebx=00000002 ecx=01010101 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=034cfe5c ebp=034cfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0402d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 034CFEA8 77DF2A00 034CFE80 00000001 00000000 034CFEA0 ntdll!NtWaitForMultipleObjects 034CFF04 77DF2A77 034CFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 034CFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 034CFF74 77C58FFD 034CFFA0 034CFFA4 034CFFA8 034CFF9C shlwapi!Ordinal271 034CFFAC 77C58F85 76BD1253 77E687DD 00000000 01F4CF6C shlwapi!Ordinal394 034CFFEC 00000000 77C58F5C 00000000 00000000 01010101 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 034cfe5c b7 7a e6 77 02 00 00 00 - 80 fe 4c 03 01 00 00 00 .z.w......L..... 034cfe6c 00 00 00 00 a0 fe 4c 03 - 00 00 00 00 00 00 00 00 ......L......... 034cfe7c 02 00 00 00 dc 01 00 00 - 2c 06 00 00 08 bd 64 07 ........,.....d. 034cfe8c 00 00 00 00 c8 14 a3 04 - 0f ee bc 76 28 09 12 00 ...........v(... 034cfe9c 00 00 00 00 00 ba 3c dc - ff ff ff ff 04 ff 4c 03 ......<.......L. 034cfeac 00 2a df 77 80 fe 4c 03 - 01 00 00 00 00 00 00 00 .*.w..L......... 034cfebc a0 fe 4c 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ..L.....`....A.w 034cfecc 00 00 00 00 dc 01 00 00 - 2c 06 00 00 00 00 00 00 ........,....... 034cfedc 00 00 00 00 30 ff 4c 03 - 2b ee bc 76 e5 03 00 00 ....0.L.+..v.... 034cfeec ee d0 bc 76 c8 14 a3 04 - 00 00 00 00 cc 86 f9 7f ...v............ 034cfefc 00 00 00 00 2c 06 00 00 - 20 ff 4c 03 77 2a df 77 ....,... .L.w*.w 034cff0c d0 fe 4c 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 ..L..A.w`...A... 034cff1c 00 00 00 00 74 ff 4c 03 - ff 64 c5 77 01 00 00 00 ....t.L..d.w.... 034cff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 034cff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 d8 25 9b 04 .....A.wm1.w.%.. 034cff4c 28 09 12 00 d8 25 9b 04 - 01 00 00 00 49 d0 bc 76 (....%......I..v 034cff5c 28 09 12 00 8c ff 4c 03 - 22 48 99 24 a0 41 c9 77 (.....L."H.$.A.w 034cff6c 60 ea 00 00 01 00 00 00 - ac ff 4c 03 fd 8f c5 77 `.........L....w 034cff7c a0 ff 4c 03 a4 ff 4c 03 - a8 ff 4c 03 9c ff 4c 03 ..L...L...L...L. 034cff8c 60 ea 00 00 6c cf f4 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x494 的状态转储 eax=02994d08 ebx=00000000 ecx=04fcee28 edx=00000000 esi=029a9e38 edi=00000000 eip=77df2268 esp=04fcee64 ebp=04fceea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:05b2c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04FCEEA8 76DF217C 00AF052E 04FCFFA4 000C65E8 00000000 user32!WaitMessage 04FCEF30 76DF1F65 000C65E8 00070718 00000000 000C65E8 browseui!Ordinal102 04FCFFAC 76C66950 000C65E8 77E687DD 000C65E8 00070718 browseui!Ordinal102 04FCFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 04fcee64 92 23 df 76 a4 ff fc 04 - e8 65 0c 00 00 00 00 00 .#.v.....e...... 04fcee74 4a 05 8c 00 c8 04 00 00 - 5d c0 00 00 ec 06 39 00 J.......].....9. 04fcee84 18 47 99 24 b3 01 00 00 - 22 01 00 00 98 52 07 00 .G.$...."....R.. 04fcee94 01 00 00 00 38 9e 9a 02 - 01 44 00 80 48 9e 0e 00 ....8....D..H... 04fceea4 00 00 00 00 30 ef fc 04 - 7c 21 df 76 2e 05 af 00 ....0...|!.v.... 04fceeb4 a4 ff fc 04 e8 65 0c 00 - 00 00 00 00 00 00 00 00 .....e.......... 04fceec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 04fceed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 04fceee4 f4 ee fc 04 a4 ff fc 04 - 00 00 00 00 00 00 00 00 ................ 04fceef4 00 00 00 00 00 00 00 00 - 20 ef fc 04 37 78 e6 77 ........ ...7x.w 04fcef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 04fcef14 ff 02 fa 77 b4 ee fc 04 - 78 dd 06 00 dc ff fc 04 ...w....x....... 04fcef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff fc 04 Rz.vxi.v........ 04fcef34 65 1f df 76 e8 65 0c 00 - 18 07 07 00 00 00 00 00 e..v.e.......... 04fcef44 e8 65 0c 00 00 00 00 00 - 00 00 00 00 00 00 00 00 .e.............. 04fcef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04fcef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04fcef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04fcef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04fcef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x30c 的状态转储 eax=0298ba18 ebx=80030001 ecx=7ffd4000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0510fe28 ebp=0510ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:05c6d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0510FF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0510FFA8 787024DA 02914D90 0510FFEC 77E687DD 001685B8 rpcrt4!NdrConformantArrayMemorySize 0510FFB4 77E687DD 001685B8 00000000 00000000 001685B8 rpcrt4!NdrConformantArrayMemorySize 0510FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x464 的状态转储 eax=0514ec18 ebx=00000000 ecx=7ffa001c edx=00000000 esi=00122b98 edi=00000000 eip=77df2268 esp=0514ee64 ebp=0514eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:05cac437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0514EEA8 76DF217C 01B90658 0514FFA4 029F8C40 00000000 user32!WaitMessage 0514EF30 76DF1F65 029F8C40 00070718 00000000 029F8C40 browseui!Ordinal102 0514FFAC 76C66950 029F8C40 77E687DD 029F8C40 00070718 browseui!Ordinal102 0514FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0514ee64 92 23 df 76 a4 ff 14 05 - 40 8c 9f 02 00 00 00 00 .#.v....@....... 0514ee74 1a 06 c5 02 02 80 00 00 - 00 00 00 00 00 00 00 00 ................ 0514ee84 a1 52 99 24 5b 01 00 00 - f7 00 00 00 98 52 07 00 .R.$[........R.. 0514ee94 01 00 00 00 98 2b 12 00 - 01 44 00 80 90 83 0b 00 .....+...D...... 0514eea4 00 00 00 00 30 ef 14 05 - 7c 21 df 76 58 06 b9 01 ....0...|!.vX... 0514eeb4 a4 ff 14 05 40 8c 9f 02 - 00 00 00 00 00 00 00 00 ....@........... 0514eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0514eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0514eee4 f4 ee 14 05 a4 ff 14 05 - 00 00 00 00 00 00 00 00 ................ 0514eef4 00 00 00 00 00 00 00 00 - 20 ef 14 05 37 78 e6 77 ........ ...7x.w 0514ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0514ef14 ff 02 fa 77 b4 ee 14 05 - 78 dd 06 00 dc ff 14 05 ...w....x....... 0514ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 14 05 Rz.vxi.v........ 0514ef34 65 1f df 76 40 8c 9f 02 - 18 07 07 00 00 00 00 00 e..v@........... 0514ef44 40 8c 9f 02 00 00 00 00 - 00 00 00 00 00 00 00 00 @............... 0514ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0514ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0514ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0514ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0514ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x61c 的状态转储 eax=000000c7 ebx=00000000 ecx=01d82b90 edx=00000000 esi=04a53ee0 edi=00000000 eip=77df2268 esp=0733ee64 ebp=0733eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:07e9c437=fb2119b4 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0733EEA8 76DF217C 0224065A 0733FFA4 04989F90 00000000 user32!WaitMessage 0733EF30 76DF1F65 04989F90 00070718 00000000 04989F90 browseui!Ordinal102 0733FFAC 76C66950 04989F90 77E687DD 04989F90 00070718 browseui!Ordinal102 0733FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0733ee64 92 23 df 76 a4 ff 33 07 - 90 9f 98 04 00 00 00 00 .#.v..3......... 0733ee74 10 06 92 01 0f 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0733ee84 91 52 99 24 5b 01 00 00 - f7 00 00 00 98 52 07 00 .R.$[........R.. 0733ee94 01 00 00 00 e0 3e a5 04 - 01 44 00 80 78 47 98 04 .....>...D..xG.. 0733eea4 00 00 00 00 30 ef 33 07 - 7c 21 df 76 5a 06 24 02 ....0.3.|!.vZ.$. 0733eeb4 a4 ff 33 07 90 9f 98 04 - 00 00 00 00 00 00 00 00 ..3............. 0733eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0733eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0733eee4 f4 ee 33 07 a4 ff 33 07 - 00 00 00 00 00 00 00 00 ..3...3......... 0733eef4 00 00 00 00 00 00 00 00 - 20 ef 33 07 37 78 e6 77 ........ .3.7x.w 0733ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0733ef14 ff 02 fa 77 b4 ee 33 07 - 78 dd 06 00 dc ff 33 07 ...w..3.x.....3. 0733ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 33 07 Rz.vxi.v......3. 0733ef34 65 1f df 76 90 9f 98 04 - 18 07 07 00 00 00 00 00 e..v............ 0733ef44 90 9f 98 04 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0733ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0733ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0733ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0733ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0733ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x2fc 的状态转储 eax=073ed424 ebx=00000000 ecx=077ee928 edx=bbef4d64 esi=77f78020 edi=00000000 eip=77f83786 esp=073ecba8 ebp=073ecc18 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=ebb0 fs=003b gs=0212 efl=00000202 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:07f4a17b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 073ECC18 77F85BD1 77F78000 77F47554 77F78020 0E0107E0 ntdll!NtWaitForSingleObject 073ECC80 37F02D6C 0E0107E0 073ECCD0 00000002 01D87900 ntdll!RtlIntegerToUnicodeString 073ECD24 75ADB6D8 0E0107E0 00000012 000004A8 00000004 !xe_ExtTextOut 073ED2B8 75ADB3D4 073ECD64 0E0107E0 00000012 000004A8 mshtml! 073ED360 75B0B342 01DA4B20 00000000 00000000 073ED3F8 mshtml! 073ED3A0 75A688BD 01D85310 01DA4B20 00000000 00000000 mshtml! 073ED42C 75A68734 01D875E0 073ED448 073ED7B0 073EEB64 msls31!LsPointXYFromPointUV 073ED498 75B0B2F0 01D85508 073ED56C 00000001 073ED7A0 msls31!LsDisplayLine 073ED588 75C04707 01DD4E40 00000007 00000000 01DBFE20 mshtml! 073ED5E8 75C04578 00000010 00000000 01DA4B20 073ED68C mshtml! 073ED600 75C03AA3 01DB84A0 077B9118 00000048 01E7C6F0 mshtml! 073ED670 75AA126D 077B9118 01DB84B0 01E7C6C0 073EEAE8 mshtml! 073ED834 75AA107E 0000006C 073EEB44 000004A1 00000000 mshtml! 073ED884 75AA610B 073ED950 073ED964 01DC0B50 01DEECE0 mshtml! 073ED974 75AA53C4 75AF9CD0 00000000 01D78498 0C000000 mshtml! 073ED9B4 75AA5769 01D78488 00000000 01D78488 00000000 mshtml! 073ED9EC 75AA55C4 00000002 073EDAB0 073EDA4C 01D78488 mshtml! 073EDAC0 75AA53C4 00000000 01DEECE0 01D78498 0C000000 mshtml! 073EDB00 75AA5769 01D78488 00000000 01D78488 00000000 mshtml! 073EDB38 75AA55C4 00000002 073EDBFC 073EDB98 01D78488 mshtml! 073EDC0C 75AA53C4 00000000 01DEEC90 01D78498 0C000000 mshtml! 073EDC4C 75AA5769 01D78488 00000000 01D78488 00000000 mshtml! 073EDC84 75AA55C4 00000002 073EDD48 073EDCE4 01D78488 mshtml! 073EDD58 75AA53C4 00000000 01DED930 01D78498 0C000000 mshtml! 073EDD98 75AA5769 01D78488 00000000 01D78488 00000000 mshtml! 073EDDD0 75AA55C4 00000002 073EDE94 073EDE30 01D78488 mshtml! 073EDEA4 75AA53C4 00000000 01DEA490 01D78498 0C000000 mshtml! 073EDEE4 75AA5769 01D78488 00000000 01D78488 00000002 mshtml! 073EDF1C 75AA55C4 00000002 073EDFE0 073EDF7C 01D78488 mshtml! 073EDFF0 75AA545C 00000000 01DC5100 00000000 75AA53C4 mshtml! 073EE040 75AA5EFE 01D78488 00000000 073EE0B8 00000000 mshtml! 073EE07C 75AA53C4 01D78488 01DC5F70 01D78430 01DC5F70 mshtml! 073EE0BC 75AA994F 01D78488 01DC5F70 01D784E4 01D78488 mshtml! 01D78430 DC0021AA 00000000 00000000 00000000 00000000 mshtml! 75AB24D8 75A93A21 75C01C7D 75AA89AF 75B0146E 75A99EB0 75AD77DC 00000013 082444F6 56067401 FBA374E8 5EC68BFF mshtml! *----> 原始堆栈转储 <----* 073ecba8 55 5c f8 77 fc 0a 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 073ecbb8 d0 01 09 09 20 80 f7 77 - e0 07 01 0e 08 6a f8 77 .... ..w.....j.w 073ecbc8 f6 f3 eb 77 47 6a f8 77 - 00 6a f8 77 2b 00 00 00 ...wGj.w.j.w+... 073ecbd8 5b 69 f8 77 98 06 ec 77 - 90 b0 06 00 00 00 00 00 [i.w...w........ 073ecbe8 d4 04 00 00 08 2c 59 76 - 00 f0 fd 7f b0 36 07 00 .....,Yv.....6.. 073ecbf8 58 01 00 00 00 00 01 00 - 4e 01 00 00 4e 01 00 00 X.......N...N... 073ecc08 bc cc 3e 07 00 c0 3d 07 - 00 00 3f 07 00 00 00 00 ..>...=...?..... 073ecc18 80 cc 3e 07 d1 5b f8 77 - 00 80 f7 77 54 75 f4 77 ..>..[.w...wTu.w 073ecc28 20 80 f7 77 e0 07 01 0e - 01 00 00 00 70 d1 3e 07 ..w........p.>. 073ecc38 00 00 00 00 30 d0 3e 07 - ca 18 e8 77 30 d0 3e 07 ....0.>....w0.>. 073ecc48 da 18 e8 77 64 cc 3e 07 - 88 62 f0 37 28 cd 3e 07 ...wd.>..b.7(.>. 073ecc58 30 d0 3e 07 28 cd 3e 07 - 24 cd 3e 07 97 74 f4 77 0.>.(.>.$.>..t.w 073ecc68 e0 07 01 0e 70 d1 3e 07 - 2a 00 00 00 a4 cc 3e 07 ....p.>.*.....>. 073ecc78 00 00 00 00 00 00 00 00 - 24 cd 3e 07 6c 2d f0 37 ........$.>.l-.7 073ecc88 e0 07 01 0e d0 cc 3e 07 - 02 00 00 00 00 79 d8 01 ......>......y.. 073ecc98 00 00 00 00 00 cd 3e 07 - 56 18 e8 77 07 00 00 00 ......>.V..w.... 073ecca8 0a 00 00 00 28 cd 3e 07 - 42 06 02 00 5c cd 3e 07 ....(.>.B...\.>. 073eccb8 5c cd 3e 07 5c cd 3e 07 - 56 18 e8 77 c0 9a e6 77 \.>.\.>.V..w...w 073eccc8 ff ff ff ff 20 cd 3e 07 - f7 9a e6 77 00 00 00 00 .... .>....w.... 073eccd8 00 00 00 00 44 ce 3e 07 - 08 d0 3e 07 3c 00 00 00 ....D.>...>.<... 线程 ID 0x5ec 的状态转储 eax=0aba30d8 ebx=00000000 ecx=00000002 edx=00000000 esi=77f41bac edi=5d0107b6 eip=37f02d10 esp=0aba2fa4 ebp=0aba302c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: xe_ExtTextOut 37f02cf0 55 push ebp 37f02cf1 8bec mov ebp,esp 37f02cf3 6aff push 0xff 37f02cf5 68a0a1f037 push 0x37f0a1a0 37f02cfa 682050f037 push 0x37f05020 37f02cff 64a100000000 mov eax,fs:[00000000] fs:00000000=???????? 37f02d05 50 push eax 37f02d06 64892500000000 mov fs:[00000000],esp fs:00000000=???????? 37f02d0d 83ec78 sub esp,0x78 错误 ->37f02d10 53 push ebx 37f02d11 56 push esi 37f02d12 57 push edi 37f02d13 e8e8e3ffff call 37f01100 37f02d18 a1989df037 mov eax,[37f09d98] ds:37f09d98=00000001 37f02d1d 85c0 test eax,eax 37f02d1f 0f8460010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d25 8b5d1c mov ebx,[ebp+0x1c] ss:0b7005fe=???????? 37f02d28 85db test ebx,ebx 37f02d2a 0f8455010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d30 8b7520 mov esi,[ebp+0x20] ss:0b7005fe=???????? 37f02d33 83fe01 cmp esi,0x1 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0ABA302C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA30E8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA31A4 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3260 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA331C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA33D8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3494 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3550 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA360C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA36C8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3784 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3840 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA38FC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA39B8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3A74 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3B30 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3BEC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3CA8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3D64 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3E20 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3EDC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA3F98 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4054 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4110 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA41CC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4288 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4344 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4400 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA44BC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4578 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4634 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA46F0 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA47AC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4868 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4924 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA49E0 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4A9C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4B58 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4C14 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4CD0 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4D8C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4E48 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4F04 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA4FC0 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA507C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5138 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA51F4 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA52B0 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA536C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5428 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA54E4 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA55A0 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA565C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5718 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA57D4 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5890 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA594C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5A08 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5AC4 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5B80 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5C3C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5CF8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5DB4 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5E70 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5F2C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA5FE8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA60A4 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6160 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA621C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA62D8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6394 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6450 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA650C 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA65C8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6684 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6740 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA67FC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA68B8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6974 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6A30 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6AEC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6BA8 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6C64 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6D20 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6DDC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6E98 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA6F54 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA7010 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA70CC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA7188 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA7244 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA7300 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA73BC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA7478 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA7534 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA75F0 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA76AC 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA7768 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA7824 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut 0ABA78E0 37F02EAB 5D0107B6 00000000 00000000 00000002 !xe_ExtTextOut *----> 原始堆栈转储 <----* 0aba2fa4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba2fb4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba2fc4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba2fd4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba2fe4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba2ff4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba3004 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba3014 00 00 00 00 f0 2b ba 0a - d8 30 ba 0a 20 50 f0 37 .....+...0.. P.7 0aba3024 a0 a1 f0 37 ff ff ff ff - e8 30 ba 0a ab 2e f0 37 ...7.....0.....7 0aba3034 b6 07 01 5d 00 00 00 00 - 00 00 00 00 02 00 00 00 ...]............ 0aba3044 e8 eb bd 0a 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba3054 b6 07 01 5d ac 1b f4 77 - 00 00 00 00 00 00 00 00 ...]...w........ 0aba3064 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba3074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba3084 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba3094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba30a4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba30b4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba30c4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0aba30d4 f0 2b ba 0a 94 31 ba 0a - 20 50 f0 37 a0 a1 f0 37 .+...1.. P.7...7 线程 ID 0x490 的状态转储 eax=00000001 ebx=00000000 ecx=00010101 edx=bbd52d64 esi=77f78020 edi=00000000 eip=77f83786 esp=0b05b1a4 ebp=0b05b214 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0bbb8777=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0B05B214 77F85BD1 77F78000 77F47554 77F78020 350108CD ntdll!NtWaitForSingleObject 0B05B27C 37F0310C 350108CD 0B05B2CC 350108CD 00000044 ntdll!RtlIntegerToUnicodeString 0B05B320 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B3DC 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B498 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B554 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B610 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B6CC 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B788 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B844 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B900 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05B9BC 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05BA78 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05BB34 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05BBF0 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05BCAC 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05BD68 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05BE24 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05BEE0 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05BF9C 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C058 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C114 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C1D0 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C28C 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C348 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C404 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C4C0 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C57C 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C638 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C6F4 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C7B0 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C86C 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C928 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05C9E4 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05CAA0 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05CB5C 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05CC18 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05CCD4 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05CD90 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05CE4C 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05CF08 37F03244 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05CFC4 75ADB617 350108CD 00000000 00000003 00000004 !xe_ExtTextOutW 0B05D558 75ADB3D4 01E14B30 350108CD 00000000 00000003 mshtml! 0B05D600 75ADA087 0B05D67C 00000000 00000000 00000000 mshtml! 0B05D74C 75AA1778 01E15370 01E15370 00000000 01C97A20 mshtml! 0B05D7BC 75AA126D 01E15370 00000000 01C979F0 0B05EAE8 mshtml! 0B05D980 75AA107E 00000001 0B05EB44 00000000 00000000 mshtml! 0B05D9D0 75AA610B 0B05DA9C 0B05DAB0 01DFCDB0 01E21700 mshtml! 0B05DAC0 75AA53C4 75AF9CD0 00000000 01DCAA18 0C000000 mshtml! 0B05DB00 75AA5769 01DCAA08 00000000 01DCAA08 00000000 mshtml! 0B05DB38 75AA55C4 00000002 0B05DBFC 0B05DB98 01DCAA08 mshtml! 0B05DC0C 75AA53C4 00000000 01E21660 01DCAA18 0C000000 mshtml! 0B05DC4C 75AA5769 01DCAA08 00000000 01DCAA08 00000000 mshtml! 0B05DC84 75AA55C4 00000002 0B05DD48 0B05DCE4 01DCAA08 mshtml! 0B05DD58 75AA53C4 00000000 01E24740 01DCAA18 0C000000 mshtml! 0B05DD98 75AA5769 01DCAA08 00000000 01DCAA08 00000000 mshtml! 0B05DDD0 75AA55C4 00000002 0B05DE94 0B05DE30 01DCAA08 mshtml! 0B05DEA4 75AA53C4 00000000 01E24340 01DCAA18 0C000000 mshtml! 0B05DEE4 75AA5769 01DCAA08 00000000 01DCAA08 00000002 mshtml! 0B05DF1C 75AA55C4 00000002 0B05DFE0 0B05DF7C 01DCAA08 mshtml! 0B05DFF0 75AA545C 00000000 01E0E280 00000000 75AA53C4 mshtml! 0B05E040 75AA5EFE 01DCAA08 00000000 0B05E0B8 00000000 mshtml! 0B05E07C 75AA53C4 01DCAA08 01E0E100 01DCA9B0 01E0E100 mshtml! 0B05E0BC 75AA994F 01DCAA08 01E0E100 01DCAA64 01DCAA08 mshtml! 01DCA9B0 DC0021AA 00000000 00000000 00000000 00000000 mshtml! 75AB24D8 75A93A21 75C01C7D 75AA89AF 75B0146E 75A99EB0 75AD77DC 00000013 082444F6 56067401 FBA374E8 5EC68BFF mshtml! *----> 原始堆栈转储 <----* 0b05b1a4 55 5c f8 77 fc 0a 00 00 - 00 00 00 00 00 00 00 00 U\.w............ 0b05b1b4 00 00 1b 09 20 80 f7 77 - cd 08 01 35 00 00 00 00 .... ..w...5.... 0b05b1c4 e6 1d fd 7f 1a 00 00 00 - 40 b1 06 00 1a 00 00 00 ........@....... 0b05b1d4 44 b3 06 00 70 4c df 77 - 38 b1 06 00 05 00 00 00 D...pL.w8....... 0b05b1e4 70 39 f8 77 00 00 07 00 - 78 07 07 00 05 00 00 00 p9.w....x....... 0b05b1f4 b8 94 12 00 10 b1 06 00 - 80 26 00 00 00 00 06 00 .........&...... 0b05b204 95 2b f8 77 b8 39 f8 77 - ff ff ff ff 00 00 00 00 .+.w.9.w........ 0b05b214 7c b2 05 0b d1 5b f8 77 - 00 80 f7 77 54 75 f4 77 |....[.w...wTu.w 0b05b224 20 80 f7 77 cd 08 01 35 - 01 00 00 00 f4 f0 64 07 ..w...5......d. 0b05b234 65 00 61 00 9b 2d f4 77 - cd 08 01 35 f4 f0 64 07 e.a..-.w...5..d. 0b05b244 01 00 00 00 a0 b2 05 0b - 00 00 00 00 cd 08 01 35 ...............5 0b05b254 01 00 00 00 f4 f0 64 07 - 20 b3 05 0b fe 54 f4 77 ......d. ....T.w 0b05b264 cd 08 01 35 f4 f0 64 07 - 01 00 00 00 a0 b2 05 0b ...5..d......... 0b05b274 00 00 00 00 00 00 00 00 - 20 b3 05 0b 0c 31 f0 37 ........ ....1.7 0b05b284 cd 08 01 35 cc b2 05 0b - cd 08 01 35 44 00 00 00 ...5.......5D... 0b05b294 0f 00 00 00 cd 08 01 35 - f4 f0 64 07 06 00 00 00 .......5..d..... 0b05b2a4 0c 00 00 00 f4 ff ff ff - 00 00 00 00 00 00 00 00 ................ 0b05b2b4 00 00 00 00 90 01 00 00 - 00 00 00 86 00 40 00 00 .............@.. 0b05b2c4 cb ce cc e5 00 00 00 00 - fe 54 f4 77 cd 08 01 35 .........T.w...5 0b05b2d4 f4 f0 64 07 01 00 00 00 - 10 b3 05 0b 00 00 00 00 ..d............. 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1236) 时间: 2003-8-26 @ 11:45:59.281 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 1132 Explorer.exe 928 Rundll32.exe 404 daemon.exe 1120 ccApp.exe 1324 RealPlay.exe 980 internat.exe 344 AcroTray.exe 1348 wuauclt.exe 1108 XDICT.exe 1648 RUNDLL32.exe 1332 RUNDLL32.exe 1076 cthighway.exe 1236 iexplore.exe 320 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (016B0000 - 016B8000) (01700000 - 01710000) (01820000 - 0183D000) (01850000 - 0186C000) (01870000 - 01889000) (780C0000 - 78121000) (773A0000 - 773B5000) (018D0000 - 018D8000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (770F0000 - 772ED000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01B30000 - 01B47000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (02110000 - 0212B000) (02240000 - 0225E000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (02610000 - 0279D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (75A40000 - 75A48000) (68EF0000 - 68F0F000) (6AC80000 - 6ACBC000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (688D0000 - 688DE000) 线程 ID 0x68c 的状态转储 eax=02944c30 ebx=00000000 ecx=76c55790 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 00140116 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 06 02 10 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0006dd68 61 1c 6a 29 16 02 00 00 - 79 00 00 00 00 00 00 00 a.j)....y....... 0006dd78 04 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 16 01 14 00 ........|!.v.... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x6a4 的状态转储 eax=019afb90 ebx=ffffffff ecx=00002c00 edx=00000000 esi=7fffffff edi=00000102 eip=77f83786 esp=019afacc ebp=019afb04 iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0250d09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019AFB04 74F57EE6 000001E8 000001EC 00000000 00000004 ntdll!NtWaitForSingleObject 019AFBF0 74FB1DA9 00000001 019AFE84 019AFC7C 019AFD80 msafd!WSPSetSockOpt 019AFC54 76BD6F2E 00000001 019AFE84 019AFC7C 019AFD80 ws2_32!select 019AFFB0 76BD6E24 77E687DD 000A1DF0 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 019AFFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 019afacc d2 bc f5 74 e8 01 00 00 - 01 00 00 00 f0 fa 9a 01 ...t............ 019afadc 84 fe 9a 01 78 fb 9a 01 - 68 fb 9a 01 d4 1f 08 90 ....x...h....... 019afaec 84 6b c3 01 ff ff ff ff - ff ff ff 7f c0 3c 0a 00 .k...........<.. 019afafc 00 00 00 00 00 00 00 00 - f0 fb 9a 01 e6 7e f5 74 .............~.t 019afb0c e8 01 00 00 ec 01 00 00 - 00 00 00 00 04 00 00 00 ................ 019afb1c 80 fd 9a 01 e8 3c 0a 00 - 7c fc 9a 01 00 00 00 00 .....<..|....... 019afb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff ec 01 00 00 ................ 019afb3c e8 01 00 00 00 00 00 00 - 00 00 07 00 90 fb 9a 01 ................ 019afb4c 17 20 01 00 80 fb 9a 01 - 10 00 00 00 00 00 00 00 . .............. 019afb5c 06 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 019afb6c ff ff ff ff 01 00 00 00 - 00 3c 0a 00 ec 01 00 00 .........<...... 019afb7c 19 00 00 00 30 00 00 00 - ec 01 00 00 a0 41 c9 77 ....0........A.w 019afb8c a0 41 c9 77 dc fb 9a 01 - 95 2b f8 77 08 36 f8 77 .A.w.....+.w.6.w 019afb9c ff ff ff ff ec fb 9a 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 019afbac c0 3c 0a 00 24 00 00 00 - 00 00 00 00 68 fb 9a 01 .<..$.......h... 019afbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 019afbcc 00 00 00 00 1c 00 00 00 - 84 fb 9a 01 1c fb 9a 01 ................ 019afbdc 24 fc 9a 01 44 fc 9a 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 019afbec ff ff ff ff 54 fc 9a 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 019afbfc 84 fe 9a 01 7c fc 9a 01 - 80 fd 9a 01 90 ff 9a 01 ....|........... 线程 ID 0x404 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffdb000 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=01a2fd24 ebp=01a2fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0258d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A2FD70 77E6A31D 01A2FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 01A2FFB4 77E687DD 00000005 000A2B24 7FFDB000 000A55E8 kernel32!WaitForMultipleObjects 01A2FFEC 00000000 777F21FE 000A55E8 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a2fd24 b7 7a e6 77 04 00 00 00 - 48 fd a2 01 01 00 00 00 .z.w....H....... 01a2fd34 00 00 00 00 00 00 00 00 - 01 00 00 00 e8 55 0a 00 .............U.. 01a2fd44 01 00 00 00 10 02 00 00 - 14 02 00 00 24 02 00 00 ............$... 01a2fd54 e0 02 00 00 00 30 35 81 - 84 33 2a 81 02 00 00 00 .....05..3*..... 01a2fd64 20 02 00 00 11 00 00 00 - 02 00 00 00 b4 ff a2 01 ............... 01a2fd74 1d a3 e6 77 48 fd a2 01 - 01 00 00 00 00 00 00 00 ...wH........... 01a2fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 01a2fd94 b0 fe a2 01 00 00 00 00 - ff ff ff ff e8 55 0a 00 .............U.. 01a2fda4 00 b0 fd 7f 24 2b 0a 00 - 00 00 00 00 3b 00 00 00 ....$+......;... 01a2fdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 01a2fdc4 23 00 00 00 23 00 00 00 - 24 2b 0a 00 00 b0 fd 7f #...#...$+...... 01a2fdd4 e8 55 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 .U...........!.w 01a2fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 01a2fdf4 fc ff a2 01 23 00 00 00 - 20 ab dc bb 24 ab dc bb ....#... ...$... 01a2fe04 db 0d 43 80 48 30 35 81 - 08 30 35 81 f0 ac dc bb ..C.H05..05..... 01a2fe14 92 51 42 80 00 00 00 00 - 88 a1 5d 82 00 00 00 00 .QB.......]..... 01a2fe24 00 00 00 00 48 ab dc bb - 03 53 06 80 00 00 00 00 ....H....S...... 01a2fe34 00 00 00 00 48 ab dc bb - 00 00 00 00 80 6b 01 c0 ....H........k.. 01a2fe44 a1 f3 40 80 01 00 00 00 - 58 00 30 c0 01 02 04 00 ..@.....X.0..... 01a2fe54 00 00 00 00 60 ab dc bb - 60 ab dc bb 74 00 76 00 ....`...`...t.v. 线程 ID 0x568 的状态转储 eax=00000009 ebx=80020000 ecx=0007c298 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=01a7fe28 ebp=01a7ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:025dd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A7FF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 01A7FFA8 787024DA 0007C0F8 01A7FFEC 77E687DD 000A80E0 rpcrt4!NdrConformantArrayMemorySize 01A7FFB4 77E687DD 000A80E0 00000000 00000000 000A80E0 rpcrt4!NdrConformantArrayMemorySize 01A7FFEC 00000000 787024C2 000A80E0 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a7fe28 85 22 70 78 04 01 00 00 - 54 ff a7 01 00 00 00 00 ."px....T....... 01a7fe38 98 09 94 02 58 ff a7 01 - 80 c0 07 00 f0 66 0a 00 ....X........f.. 01a7fe48 6d 31 f8 77 00 00 00 00 - 00 00 00 00 00 00 00 00 m1.w............ 01a7fe58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe78 00 00 00 00 00 00 00 00 - 00 00 00 00 55 12 00 00 ............U... 01a7fe88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fea8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7feb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fec8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7ff08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7ff18 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7ff28 00 00 00 00 e0 1c 38 81 - 60 25 30 81 00 00 00 00 ......8.`%0..... 01a7ff38 60 25 30 81 f0 26 30 81 - 64 9c 58 bc f3 da 42 80 `%0..&0.d.X...B. 01a7ff48 a4 da 42 80 d4 4b 06 80 - c0 26 30 81 00 00 02 80 ..B..K...&0..... 01a7ff58 00 a2 2f 4d ff ff ff ff - 50 fe a7 01 00 00 02 80 ../M....P....... 线程 ID 0x570 的状态转储 eax=00000000 ebx=00000102 ecx=77b13600 edx=00000000 esi=77f8318c edi=01acff74 eip=77f83197 esp=01acff60 ebp=01acff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0262d533=145e8950 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01ACFF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x324 的状态转储 eax=0012bb18 ebx=80020000 ecx=028da488 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=01b0fe28 ebp=01b0ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0266d3fb=0774c73b 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01B0FF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 01B0FFA8 787024DA 0007C0F8 01B0FFEC 77E687DD 000A7F50 rpcrt4!NdrConformantArrayMemorySize 01B0FFB4 77E687DD 000A7F50 00000000 00000000 000A7F50 rpcrt4!NdrConformantArrayMemorySize 01B0FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0xd4 的状态转储 eax=03d31a18 ebx=000c75a8 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=01b9ff84 ebp=01b9ffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:026fd557=00000000 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:026fd557=00000000 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:026fd557=00000000 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:026fd557=00000000 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01B9FFB4 77E687DD 74F55F4B 7FFDB000 00000000 000C75A8 ntdll!ZwRemoveIoCompletion 01B9FFEC 00000000 74F54766 000C75A8 00000000 01BA0064 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01b9ff84 b8 47 f5 74 f0 02 00 00 - bc ff b9 01 b0 ff b9 01 .G.t............ 01b9ff94 a4 ff b9 01 28 2c f5 74 - 00 b0 fd 7f 00 00 00 00 ....(,.t........ 01b9ffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 80 59 15 00 ...........t.Y.. 01b9ffb4 ec ff b9 01 dd 87 e6 77 - 4b 5f f5 74 00 b0 fd 7f .......wK_.t.... 01b9ffc4 00 00 00 00 a8 75 0c 00 - 00 60 fd 7f 64 f7 9e 01 .....u...`..d... 01b9ffd4 c0 ff b9 01 64 f7 9e 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01b9ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01b9fff4 66 47 f5 74 a8 75 0c 00 - 00 00 00 00 64 00 ba 01 fG.t.u......d... 01ba0004 00 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01ba0014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01ba0024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ba0034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01ba0044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 0a 00 00 ................ 01ba0054 00 00 00 00 00 00 00 03 - 00 00 04 00 00 00 02 00 ................ 01ba0064 04 00 00 00 01 01 01 01 - 02 00 00 00 06 00 00 00 ................ 01ba0074 00 00 01 03 00 00 02 00 - 00 0b 00 00 00 00 00 00 ................ 01ba0084 00 00 00 00 01 04 00 00 - 00 00 00 21 00 00 00 00 ...........!.... 01ba0094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ba00a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 01ba00b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x408 的状态转储 eax=00000061 ebx=01ffff74 ecx=7ffa001c edx=00000000 esi=77f8377b edi=00000308 eip=77f83786 esp=01ffff58 ebp=01ffff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02b5d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01FFFF7C 77E67837 00000308 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 28A30001 C366C025 00000001 00000000 00106700 C302F21D 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01ffff58 0f 78 e6 77 08 03 00 00 - 00 00 00 00 74 ff ff 01 .x.w........t... 01ffff68 00 00 00 00 e0 1e ba 01 - 3c 31 f8 77 00 44 5f 9a ........<1.w.D_. 01ffff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 08 03 00 00 ....m1.w7x.w.... 01ffff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 08 03 00 00 .'......k..u.... 01ffff98 c0 27 09 00 88 b0 06 00 - e0 1e ba 01 ec ff ff 01 .'.............. 01ffffa8 e0 1e ba 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01ffffb8 dd 87 e6 77 e0 1e ba 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01ffffc8 e0 1e ba 01 00 50 fd 7f - 59 16 00 00 c0 ff ff 01 .....P..Y....... 01ffffd8 59 16 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 Y.......V..w...w 01ffffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01fffff8 e0 1e ba 01 00 00 00 00 - 0d 00 b6 03 02 00 3f 00 ..............?. 02000008 3f 00 3f 00 3f 00 81 fe - 00 00 00 00 00 00 00 00 ?.?.?........... 02000018 00 00 03 80 00 00 01 00 - 02 00 03 00 04 00 05 00 ................ 02000028 06 00 07 00 08 00 09 00 - 0a 00 0b 00 0c 00 0d 00 ................ 02000038 0e 00 0f 00 10 00 11 00 - 12 00 13 00 14 00 15 00 ................ 02000048 16 00 17 00 18 00 19 00 - 1a 00 1b 00 1c 00 1d 00 ................ 02000058 1e 00 1f 00 20 00 21 00 - 22 00 23 00 24 00 25 00 .... .!.".#.$.%. 02000068 26 00 27 00 28 00 29 00 - 2a 00 2b 00 2c 00 2d 00 &.'.(.).*.+.,.-. 02000078 2e 00 2f 00 30 00 31 00 - 32 00 33 00 34 00 35 00 ../.0.1.2.3.4.5. 02000088 36 00 37 00 38 00 39 00 - 3a 00 3b 00 3c 00 3d 00 6.7.8.9.:.;.<.=. 线程 ID 0x5cc 的状态转储 eax=000000c0 ebx=0000003f ecx=0252ef50 edx=00000000 esi=0252ec00 edi=00000001 eip=77f837b2 esp=0252ebe8 ebp=0252ffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0308c1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0252FFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 0252FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0252ebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 52 02 01 00 00 00 ...w......R..... 0252ebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 0252ec08 68 03 00 00 cc 05 00 00 - 0f 00 00 00 0f 00 00 00 h............... 0252ec18 6c 03 00 00 3c 03 00 00 - b8 03 00 00 c8 03 00 00 l...<........... 0252ec28 dc 03 00 00 fc 03 00 00 - 0c 04 00 00 20 04 00 00 ............ ... 0252ec38 3c 04 00 00 54 04 00 00 - 64 04 00 00 78 04 00 00 <...T...d...x... 0252ec48 8c 04 00 00 a4 04 00 00 - b4 04 00 00 00 00 00 00 ................ 0252ec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252eca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0252ed18 00 00 00 00 c0 a1 0d 00 - f0 bd 10 00 10 bf 10 00 ................ 线程 ID 0x480 的状态转储 eax=00000000 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=0256ff20 ebp=0256ff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:030cd4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0256FF6C 77E6A31D 0256FF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x38c 的状态转储 eax=05b00f14 ebx=025aff74 ecx=055b40fc edx=00000000 esi=77f8377b edi=000004cc eip=77f83786 esp=025aff58 ebp=025aff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0310d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 025AFF7C 77E67837 000004CC 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 28A30001 C366C025 00000001 00000000 00106700 C302F21D 00000000 00000000 00000000 00000000 00000000 线程 ID 0x54c 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0286ff24 ebp=0286ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:033cd4f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0286FF70 77E6A31D 0286FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0286FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0286FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0286ff24 b7 7a e6 77 02 00 00 00 - 48 ff 86 02 01 00 00 00 .z.w....H....... 0286ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0286ff44 00 00 00 00 34 05 00 00 - 30 05 00 00 80 f1 42 81 ....4...0.....B. 0286ff54 20 f0 42 81 20 e0 89 81 - 20 f7 5e 02 14 53 34 81 .B. ... .^..S4. 0286ff64 38 2d 70 bc 00 00 00 00 - 00 00 00 00 b4 ff 86 02 8-p............. 0286ff74 1d a3 e6 77 48 ff 86 02 - 01 00 00 00 00 00 00 00 ...wH........... 0286ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0286ff94 a4 ff 86 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 0286ffa4 34 05 00 00 30 05 00 00 - 00 00 00 00 00 00 00 00 4...0........... 0286ffb4 ec ff 86 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 0286ffc4 00 00 00 00 00 00 00 00 - 00 d0 f9 7f 45 00 00 00 ............E... 0286ffd4 c0 ff 86 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ....E.......V..w 0286ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0286fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02870004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02870014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02870024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02870034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02870044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02870054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x124 的状态转储 eax=0321ff2c ebx=0321ff70 ecx=00166708 edx=00000000 esi=77f8377b edi=000005d0 eip=77f83786 esp=0321ff54 ebp=0321ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03d7d527=d7d55000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0321FF78 77E67837 000005D0 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 0321ff54 0f 78 e6 77 d0 05 00 00 - 00 00 00 00 70 ff 21 03 .x.w........p.!. 0321ff64 18 1a 0b 00 80 f3 c2 01 - 61 1c 6a 29 f0 d8 ff ff ........a.j).... 0321ff74 ff ff ff ff 01 00 00 00 - 37 78 e6 77 d0 05 00 00 ........7x.w.... 0321ff84 01 00 00 00 00 00 00 00 - 04 a1 bd 75 d0 05 00 00 ...........u.... 0321ff94 01 00 00 00 80 f3 c2 01 - ec ff 21 03 5d 28 df 77 ..........!.](.w 0321ffa4 80 f3 c2 01 00 00 00 00 - 9a f4 b2 75 84 02 13 00 ...........u.... 0321ffb4 74 f4 b2 75 dd 87 e6 77 - 80 f3 c2 01 5d 28 df 77 t..u...w....](.w 0321ffc4 84 02 13 00 80 f3 c2 01 - 00 c0 f9 7f 84 02 13 00 ................ 0321ffd4 c0 ff 21 03 84 02 13 00 - ff ff ff ff 56 18 e8 77 ..!.........V..w 0321ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0321fff4 6b f4 b2 75 80 f3 c2 01 - 00 00 00 00 00 00 00 00 k..u............ 03220004 9f 00 13 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ................ 03220014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 03220024 ff ff ff 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03220034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 03220044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 03220054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03220064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 03220074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03220084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x694 的状态转储 eax=03f40fbc ebx=00000002 ecx=03f40000 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0329fe5c ebp=0329fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:03dfd42f=6226616e 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0329FEA8 77DF2A00 0329FE80 00000001 00000000 0329FEA0 ntdll!NtWaitForMultipleObjects 0329FF04 77DF2A77 0329FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0329FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0329FF74 77C58FFD 0329FFA0 0329FFA4 0329FFA8 0329FF9C shlwapi!Ordinal271 0329FFAC 77C58F85 77F82B95 77E687DD 00000000 019AFA10 shlwapi!Ordinal394 0329FFEC 00000000 77C58F5C 00000000 00000000 65696C43 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0329fe5c b7 7a e6 77 02 00 00 00 - 80 fe 29 03 01 00 00 00 .z.w......)..... 0329fe6c 00 00 00 00 a0 fe 29 03 - 00 00 00 00 00 00 00 00 ......)......... 0329fe7c 02 00 00 00 f4 01 00 00 - 48 05 00 00 78 fe 29 03 ........H...x.). 0329fe8c 00 00 00 00 00 00 00 00 - 48 fe 29 03 e4 fe 29 03 ........H.)...). 0329fe9c dc ff 29 03 00 ba 3c dc - ff ff ff ff 04 ff 29 03 ..)...<.......). 0329feac 00 2a df 77 80 fe 29 03 - 01 00 00 00 00 00 00 00 .*.w..)......... 0329febc a0 fe 29 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ..).....`....A.w 0329fecc 00 00 00 00 f4 01 00 00 - 48 05 00 00 95 2b f8 77 ........H....+.w 0329fedc 18 36 f8 77 ff ff ff ff - 2c ff 29 03 82 73 e6 77 .6.w....,.)..s.w 0329feec 00 00 07 00 00 00 00 00 - 00 00 00 00 cc b6 f9 7f ................ 0329fefc 00 00 00 00 48 05 00 00 - 20 ff 29 03 77 2a df 77 ....H... .).w*.w 0329ff0c d0 fe 29 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 ..)..A.w`...A... 0329ff1c 00 00 00 00 74 ff 29 03 - ff 64 c5 77 01 00 00 00 ....t.)..d.w.... 0329ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0329ff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 a1 96 bc 76 .....A.wm1.w...v 0329ff4c 40 54 94 02 28 af 8b 02 - 00 00 00 00 82 96 bc 76 @T..(..........v 0329ff5c 00 00 00 00 b4 d0 bc 76 - 89 18 6a 29 a0 41 c9 77 .......v..j).A.w 0329ff6c 60 ea 00 00 01 00 00 00 - ac ff 29 03 fd 8f c5 77 `.........)....w 0329ff7c a0 ff 29 03 a4 ff 29 03 - a8 ff 29 03 9c ff 29 03 ..)...)...)...). 0329ff8c 60 ea 00 00 10 fa 9a 01 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x470 的状态转储 eax=00000000 ebx=0000057c ecx=7ffdb000 edx=00000000 esi=039cff98 edi=77df7c12 eip=77df1d6b esp=039cff58 ebp=039cff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0452d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0452d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0452d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 039CFF78 77535C36 039CFF98 00000000 00000000 00000000 user32!TranslateMessageEx 039CFFB4 77E687DD 0000057C 77555428 0006C2A4 0000057C winmm!midiOutGetNumDevs 039CFFEC 00000000 77535BB9 0000057C 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 039cff58 4e 7c df 77 98 ff 9c 03 - 00 00 00 00 00 00 00 00 N|.w............ 039cff68 00 00 00 00 7c 05 00 00 - 00 00 00 00 12 7c df 77 ....|........|.w 039cff78 b4 ff 9c 03 36 5c 53 77 - 98 ff 9c 03 00 00 00 00 ....6\Sw........ 039cff88 00 00 00 00 00 00 00 00 - 28 54 55 77 a4 c2 06 00 ........(TUw.... 039cff98 34 02 15 00 bc 03 00 00 - 3c e2 15 00 00 00 00 00 4.......<....... 039cffa8 97 af 67 29 fa 03 00 00 - 13 01 00 00 ec ff 9c 03 ..g)............ 039cffb8 dd 87 e6 77 7c 05 00 00 - 28 54 55 77 a4 c2 06 00 ...w|...(TUw.... 039cffc8 7c 05 00 00 00 b0 fd 7f - 00 00 53 77 c0 ff 9c 03 |.........Sw.... 039cffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 039cffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 039cfff8 7c 05 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 |............... 039d0008 02 00 00 00 06 00 00 00 - 00 00 00 00 2b 00 00 00 ............+... 039d0018 6d 01 00 00 18 00 00 00 - 00 00 00 00 00 00 00 00 m............... 039d0028 30 0e 9d 03 30 00 9d 03 - 00 00 00 00 00 00 00 00 0...0........... 039d0038 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039d0048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039d0058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039d0068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039d0078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039d0088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x280 的状态转储 eax=00000000 ebx=00000000 ecx=029bd490 edx=00000000 esi=0013be50 edi=00000000 eip=77df2268 esp=0482ee64 ebp=0482eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0538c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0482EEA8 76DF217C 00C1052E 0482FFA4 000BE890 00000000 user32!WaitMessage 0482EF30 76DF1F65 000BE890 00000000 00000000 000BE890 browseui!Ordinal102 0482FFAC 76C66950 000BE890 77E687DD 000BE890 00000000 browseui!Ordinal102 0482FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0482ee64 92 23 df 76 a4 ff 82 04 - 90 e8 0b 00 00 00 00 00 .#.v............ 0482ee74 1a 06 ce 02 02 80 00 00 - 00 00 00 00 00 00 00 00 ................ 0482ee84 61 1c 6a 29 1c 02 00 00 - 7f 00 00 00 98 52 07 00 a.j).........R.. 0482ee94 01 00 00 00 50 be 13 00 - 01 44 00 80 b0 bd 13 00 ....P....D...... 0482eea4 00 00 00 00 30 ef 82 04 - 7c 21 df 76 2e 05 c1 00 ....0...|!.v.... 0482eeb4 a4 ff 82 04 90 e8 0b 00 - 00 00 00 00 00 00 00 00 ................ 0482eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0482eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0482eee4 f4 ee 82 04 a4 ff 82 04 - 00 00 00 00 00 00 00 00 ................ 0482eef4 00 00 00 00 00 00 00 00 - 20 ef 82 04 37 78 e6 77 ........ ...7x.w 0482ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0482ef14 ff 02 fa 77 b4 ee 82 04 - 78 dd 06 00 dc ff 82 04 ...w....x....... 0482ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 82 04 Rz.vxi.v........ 0482ef34 65 1f df 76 90 e8 0b 00 - 00 00 00 00 00 00 00 00 e..v............ 0482ef44 90 e8 0b 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0482ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0482ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0482ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0482ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0482ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x240 的状态转储 eax=00000000 ebx=00000000 ecx=051e5390 edx=00000000 esi=00114a20 edi=00000000 eip=77df2268 esp=059eee64 ebp=059eeea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0654c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 059EEEA8 76DF217C 015805FE 059EFFA4 03EA63A0 00000000 user32!WaitMessage 059EEF30 76DF1F65 03EA63A0 00070718 00000000 03EA63A0 browseui!Ordinal102 059EFFAC 76C66950 03EA63A0 77E687DD 03EA63A0 00070718 browseui!Ordinal102 059EFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 059eee64 92 23 df 76 a4 ff 9e 05 - a0 63 ea 03 00 00 00 00 .#.v.....c...... 059eee74 78 05 ab 01 02 80 00 00 - 00 00 00 00 00 00 00 00 x............... 059eee84 61 1c 6a 29 1c 02 00 00 - 7f 00 00 00 98 52 07 00 a.j).........R.. 059eee94 01 00 00 00 20 4a 11 00 - 01 44 00 80 48 f9 97 02 .... J...D..H... 059eeea4 00 00 00 00 30 ef 9e 05 - 7c 21 df 76 fe 05 58 01 ....0...|!.v..X. 059eeeb4 a4 ff 9e 05 a0 63 ea 03 - 00 00 00 00 00 00 00 00 .....c.......... 059eeec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 059eeed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 059eeee4 f4 ee 9e 05 a4 ff 9e 05 - 00 00 00 00 00 00 00 00 ................ 059eeef4 00 00 00 00 00 00 00 00 - 20 ef 9e 05 37 78 e6 77 ........ ...7x.w 059eef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 059eef14 ff 02 fa 77 b4 ee 9e 05 - 78 dd 06 00 dc ff 9e 05 ...w....x....... 059eef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 9e 05 Rz.vxi.v........ 059eef34 65 1f df 76 a0 63 ea 03 - 18 07 07 00 00 00 00 00 e..v.c.......... 059eef44 a0 63 ea 03 00 00 00 00 - 00 00 00 00 00 00 00 00 .c.............. 059eef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 059eef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 059eef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 059eef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 059eef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x428 的状态转储 eax=00000000 ebx=00000002 ecx=000a1df0 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=05aafe5c ebp=05aafea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0660d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 05AAFEA8 77DF2A00 05AAFE80 00000001 00000000 05AAFEA0 ntdll!NtWaitForMultipleObjects 05AAFF04 77DF2A77 05AAFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 05AAFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 05AAFF74 77C58FFD 05AAFFA0 05AAFFA4 05AAFFA8 05AAFF9C shlwapi!Ordinal271 05AAFFAC 77C58F85 77F82B95 77E687DD 00000000 019AFA10 shlwapi!Ordinal394 05AAFFEC 00000000 77C58F5C 00000000 00000000 1F1F1F1F shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 05aafe5c b7 7a e6 77 02 00 00 00 - 80 fe aa 05 01 00 00 00 .z.w............ 05aafe6c 00 00 00 00 a0 fe aa 05 - 00 00 00 00 00 00 00 00 ................ 05aafe7c 02 00 00 00 f4 01 00 00 - 34 07 00 00 78 fe aa 05 ........4...x... 05aafe8c 00 00 00 00 00 00 00 00 - 48 fe aa 05 e4 fe aa 05 ........H....... 05aafe9c dc ff aa 05 00 ba 3c dc - ff ff ff ff 04 ff aa 05 ......<......... 05aafeac 00 2a df 77 80 fe aa 05 - 01 00 00 00 00 00 00 00 .*.w............ 05aafebc a0 fe aa 05 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 05aafecc 00 00 00 00 f4 01 00 00 - 34 07 00 00 95 2b f8 77 ........4....+.w 05aafedc 18 36 f8 77 ff ff ff ff - 2c ff aa 05 82 73 e6 77 .6.w....,....s.w 05aafeec 00 00 07 00 00 00 00 00 - 00 00 00 00 cc 46 fd 7f .............F.. 05aafefc 00 00 00 00 34 07 00 00 - 20 ff aa 05 77 2a df 77 ....4... ...w*.w 05aaff0c d0 fe aa 05 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 05aaff1c 00 00 00 00 74 ff aa 05 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 05aaff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 05aaff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 a1 96 bc 76 .....A.wm1.w...v 05aaff4c 40 54 94 02 90 f6 10 00 - 00 00 00 00 82 96 bc 76 @T.............v 05aaff5c 00 00 00 00 b4 d0 bc 76 - 98 18 6a 29 a0 41 c9 77 .......v..j).A.w 05aaff6c 60 ea 00 00 01 00 00 00 - ac ff aa 05 fd 8f c5 77 `..............w 05aaff7c a0 ff aa 05 a4 ff aa 05 - a8 ff aa 05 9c ff aa 05 ................ 05aaff8c 60 ea 00 00 10 fa 9a 01 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x504 的状态转储 eax=00000000 ebx=000c97a0 ecx=05598ca0 edx=03d540e8 esi=00000000 edi=05ebc394 eip=765bf9c8 esp=05ebc364 ebp=05ebc3ac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: CoInternetCompareUrl 765bf9ae 57 push edi 765bf9af 8d7de8 lea edi,[ebp+0xe8] ss:06a1997e=???????? 765bf9b2 8b4b30 mov ecx,[ebx+0x30] ds:00c26d72=???????? 765bf9b5 57 push edi 765bf9b6 ff75f8 push dword ptr [ebp+0xf8] ss:06a1997e=???????? 765bf9b9 8b433c mov eax,[ebx+0x3c] ds:00c26d72=???????? 765bf9bc 39734c cmp [ebx+0x4c],esi ds:00c26d72=???????? 765bf9bf 8975e8 mov [ebp+0xe8],esi ss:06a1997e=???????? 765bf9c2 ff732c push dword ptr [ebx+0x2c] ds:00c26d72=???????? 765bf9c5 8975f0 mov [ebp+0xf0],esi ss:06a1997e=???????? 错误 ->765bf9c8 8b10 mov edx,[eax] ds:00000000=???????? 765bf9ca 6800c00000 push 0xc000 765bf9cf 51 push ecx 765bf9d0 6802200000 push 0x2002 765bf9d5 56 push esi 765bf9d6 50 push eax 765bf9d7 0f84a7000000 je CoInternetCompareUrl+0x6be0 (765bfa84) 765bf9dd ff520c call dword ptr [edx+0xc] ds:048b16ba=???????? 765bf9e0 3bc6 cmp eax,esi 765bf9e2 8945ec mov [ebp+0xec],eax ss:06a1997e=???????? 765bf9e5 0f84a1000000 je CoInternetCompareUrl+0x6be8 (765bfa8c) 765bf9eb 8b4338 mov eax,[ebx+0x38] ds:00c26d72=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 05EBC3AC 765BF923 055FA7B7 00001A3D 05EBC400 00000000 urlmon!CoInternetCompareUrl 05EBC408 765994AF 03D54158 055FA7B7 00001A3D 05EBC430 urlmon!CoInternetCompareUrl 05EBC438 7659A46B 00000000 055FA7B7 00001A3D 05EBC45C urlmon!CopyStgMedium 05EBC464 7659A3C9 00000000 055FA7B7 00001A3D 05EBC484 urlmon!FindMediaType 05EBC488 75AC4A75 0299FBC0 055FA7B7 00001A3D 05EBC4D0 urlmon!FindMediaType 05EBC4AC 75AC4918 055FA7B7 00001A3D 05EBC4D0 01E304B0 mshtml! 05EBC4D4 75ABEFE7 75C88E28 01E22EB0 05EBC51C 00000000 mshtml! 00000000 00000000 00000000 00000000 00000000 00000000 mshtml! *----> 原始堆栈转储 <----* 05ebc364 10 0e 5e 05 ec 09 00 00 - 94 c3 eb 05 9c c3 eb 05 ..^............. 05ebc374 00 00 00 00 00 c4 eb 05 - a0 97 0c 00 58 41 d5 03 ............XA.. 05ebc384 00 00 00 00 01 00 00 00 - 00 00 07 00 cb 09 00 00 ................ 05ebc394 00 00 00 00 00 00 00 00 - 00 00 00 00 00 6f ac 75 .............o.u 05ebc3a4 ec 09 00 00 00 00 00 00 - 08 c4 eb 05 23 f9 5b 76 ............#.[v 05ebc3b4 b7 a7 5f 05 3d 1a 00 00 - 00 c4 eb 05 00 00 00 00 .._.=........... 05ebc3c4 00 c4 eb 05 00 00 00 00 - 29 dd 59 76 a0 97 0c 00 ........).Yv.... 05ebc3d4 b7 a7 5f 05 3d 1a 00 00 - 00 c4 eb 05 2d 95 59 76 .._.=.......-.Yv 05ebc3e4 40 b1 91 02 b7 a7 5f 05 - 3d 1a 00 00 00 c4 eb 05 @....._.=....... 05ebc3f4 b7 a7 5f 05 40 af 59 76 - d0 3f d5 03 00 00 00 00 .._.@.Yv.?...... 05ebc404 01 00 00 00 38 c4 eb 05 - af 94 59 76 58 41 d5 03 ....8.....YvXA.. 05ebc414 b7 a7 5f 05 3d 1a 00 00 - 30 c4 eb 05 48 ae 59 76 .._.=...0...H.Yv 05ebc424 b7 a7 5f 05 50 ce 12 00 - 00 41 d5 03 00 00 00 00 .._.P....A...... 05ebc434 01 00 00 00 64 c4 eb 05 - 6b a4 59 76 00 00 00 00 ....d...k.Yv.... 05ebc444 b7 a7 5f 05 3d 1a 00 00 - 5c c4 eb 05 00 00 00 00 .._.=...\....... 05ebc454 c0 fb 99 02 d0 c4 eb 05 - 00 00 00 00 01 00 00 00 ................ 05ebc464 88 c4 eb 05 c9 a3 59 76 - 00 00 00 00 b7 a7 5f 05 ......Yv......_. 05ebc474 3d 1a 00 00 84 c4 eb 05 - 00 00 00 00 b0 2e e2 01 =............... 05ebc484 00 00 00 00 ac c4 eb 05 - 75 4a ac 75 c0 fb 99 02 ........uJ.u.... 05ebc494 b7 a7 5f 05 3d 1a 00 00 - d0 c4 eb 05 00 00 00 00 .._.=........... 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1360) 时间: 2003-8-27 @ 11:35:16.125 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 1132 Explorer.exe 928 Rundll32.exe 404 daemon.exe 1120 ccApp.exe 1324 RealPlay.exe 980 internat.exe 344 AcroTray.exe 1348 wuauclt.exe 1108 XDICT.exe 1648 RUNDLL32.exe 1332 RUNDLL32.exe 1076 cthighway.exe 1048 conime.exe 1284 IEXPLORE.exe 1088 WINWORD.exe 1604 AgentSvr.exe 1360 iexplore.exe 1176 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (016C0000 - 016C8000) (01710000 - 01720000) (01830000 - 0184D000) (01860000 - 0187C000) (01880000 - 01899000) (780C0000 - 78121000) (773A0000 - 773B5000) (018E0000 - 018E8000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (770F0000 - 772ED000) (74F90000 - 74F97000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01B30000 - 01B47000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (021D0000 - 021EB000) (02300000 - 0231E000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (75A60000 - 75A88000) (77530000 - 77560000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75CE0000 - 75CE6000) (02B30000 - 02CBD000) (76AF0000 - 76B2D000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (68EF0000 - 68F0F000) (6AC80000 - 6ACBC000) (688D0000 - 688DE000) 线程 ID 0x684 的状态转储 eax=0006dae4 ebx=00000000 ecx=02cee75c edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 00CA00EC 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 72 01 39 00 02 80 00 00 - 00 00 00 00 00 00 00 00 r.9............. 0006dd68 0d a8 86 2e 4c 01 00 00 - ef 00 00 00 00 00 00 00 ....L........... 0006dd78 03 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 ec 00 ca 00 ........|!.v.... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x11c 的状态转储 eax=019bfe84 ebx=ffffffff ecx=019bffdc edx=00000000 esi=7fffffff edi=00000102 eip=77f83786 esp=019bfacc ebp=019bfb04 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0251d09f=00000000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019BFB04 74F57EE6 00000244 00000248 00000000 00000004 ntdll!NtWaitForSingleObject 019BFBF0 74FB1DA9 00000001 019BFE84 019BFC7C 019BFD80 msafd!WSPSetSockOpt 019BFC54 76BD6F2E 00000001 019BFE84 019BFC7C 019BFD80 ws2_32!select 019BFFB0 76BD6E24 77E687DD 000A2038 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 019BFFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 019bfacc d2 bc f5 74 44 02 00 00 - 01 00 00 00 f0 fa 9b 01 ...tD........... 019bfadc 84 fe 9b 01 78 fb 9b 01 - 68 fb 9b 01 76 a2 15 3b ....x...h...v..; 019bfaec 4c 6c c3 01 ff ff ff ff - ff ff ff 7f 40 69 0a 00 Ll..........@i.. 019bfafc 00 00 00 00 00 00 00 00 - f0 fb 9b 01 e6 7e f5 74 .............~.t 019bfb0c 44 02 00 00 48 02 00 00 - 00 00 00 00 04 00 00 00 D...H........... 019bfb1c 80 fd 9b 01 48 6a 0a 00 - 7c fc 9b 01 00 00 00 00 ....Hj..|....... 019bfb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff 48 02 00 00 ............H... 019bfb3c 44 02 00 00 00 00 00 00 - 00 00 07 00 90 fb 9b 01 D............... 019bfb4c 17 20 01 00 80 fb 9b 01 - 10 00 00 00 00 00 00 00 . .............. 019bfb5c 06 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 019bfb6c ff ff ff ff 01 00 00 00 - 00 69 0a 00 48 02 00 00 .........i..H... 019bfb7c 19 00 00 00 30 00 00 00 - 48 02 00 00 a0 41 c9 77 ....0...H....A.w 019bfb8c a0 41 c9 77 dc fb 9b 01 - 95 2b f8 77 08 36 f8 77 .A.w.....+.w.6.w 019bfb9c ff ff ff ff ec fb 9b 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 019bfbac 40 69 0a 00 24 00 00 00 - 00 00 00 00 68 fb 9b 01 @i..$.......h... 019bfbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 019bfbcc 00 00 00 00 1c 00 00 00 - 84 fb 9b 01 1c fb 9b 01 ................ 019bfbdc 24 fc 9b 01 44 fc 9b 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 019bfbec ff ff ff ff 54 fc 9b 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 019bfbfc 84 fe 9b 01 7c fc 9b 01 - 80 fd 9b 01 90 ff 9b 01 ....|........... 线程 ID 0x6d4 的状态转储 eax=000bcd20 ebx=00000002 ecx=000bcd20 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=019ffe5c ebp=019ffea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0255d42f=00000000 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFEA8 77DF2A00 019FFE80 00000001 00000000 019FFEA0 ntdll!NtWaitForMultipleObjects 019FFF04 77DF2A77 019FFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 019FFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 019FFF74 77C58FFD 019FFFA0 019FFFA4 019FFFA8 019FFF9C shlwapi!Ordinal271 019FFFAC 77C58F85 00070718 77E687DD 00000000 00070178 shlwapi!Ordinal394 019FFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x4ac 的状态转储 eax=01a30003 ebx=77f8316d ecx=7ffda000 edx=00000000 esi=000a4e50 edi=0007c080 eip=77f83197 esp=01a3ff78 ebp=01a3ffa8 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0259d54b=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A3FFA8 787024DA 0007C0F8 01A3FFEC 77E687DD 000A4E78 ntdll!NtDelayExecution 01A3FFB4 77E687DD 000A4E78 00000000 00000000 000A4E78 rpcrt4!NdrConformantArrayMemorySize 01A3FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x5ec 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffdb000 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=01a7fd24 ebp=01a7fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:025dd2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A7FD70 77E6A31D 01A7FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 01A7FFB4 77E687DD 00000005 000A6254 7FFDB000 000A6260 kernel32!WaitForMultipleObjects 01A7FFEC 00000000 777F21FE 000A6260 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a7fd24 b7 7a e6 77 04 00 00 00 - 48 fd a7 01 01 00 00 00 .z.w....H....... 01a7fd34 00 00 00 00 00 00 00 00 - 01 00 00 00 60 62 0a 00 ............`b.. 01a7fd44 01 00 00 00 1c 02 00 00 - 20 02 00 00 30 02 00 00 ........ ...0... 01a7fd54 d0 02 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fd64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff a7 01 ................ 01a7fd74 1d a3 e6 77 48 fd a7 01 - 01 00 00 00 00 00 00 00 ...wH........... 01a7fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 01a7fd94 b0 fe a7 01 00 00 00 00 - ff ff ff ff 60 62 0a 00 ............`b.. 01a7fda4 00 b0 fd 7f 54 62 0a 00 - 00 00 00 00 00 00 00 00 ....Tb.......... 01a7fdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 01a7fdc4 23 00 00 00 23 00 00 00 - 54 62 0a 00 00 b0 fd 7f #...#...Tb...... 01a7fdd4 60 62 0a 00 00 b0 fd 7f - 00 b0 fd 7f fe 21 7f 77 `b...........!.w 01a7fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 01a7fdf4 fc ff a7 01 23 00 00 00 - 00 00 00 00 00 00 00 00 ....#........... 01a7fe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe14 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe24 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe34 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe44 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a7fe54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x280 的状态转储 eax=00000000 ebx=00000102 ecx=77b13600 edx=00000000 esi=77f8318c edi=01acff74 eip=77f83197 esp=01acff60 ebp=01acff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:0262d533=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01ACFF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x604 的状态转储 eax=0015a150 ebx=000c7058 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=01b9ff84 ebp=01b9ffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:026fd557=???????? 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:026fd557=???????? 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:026fd557=???????? 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:026fd557=???????? 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01B9FFB4 77E687DD 74F55F4B 7FFDB000 00000000 000C7058 ntdll!ZwRemoveIoCompletion 01B9FFEC 00000000 74F54766 000C7058 00000000 01BA00C9 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01b9ff84 b8 47 f5 74 e0 02 00 00 - bc ff b9 01 b0 ff b9 01 .G.t............ 01b9ff94 a4 ff b9 01 28 2c f5 74 - 00 b0 fd 7f 00 00 00 00 ....(,.t........ 01b9ffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 28 67 89 02 ...........t(g.. 01b9ffb4 ec ff b9 01 dd 87 e6 77 - 4b 5f f5 74 00 b0 fd 7f .......wK_.t.... 01b9ffc4 00 00 00 00 58 70 0c 00 - 00 70 fd 7f 64 f7 9f 01 ....Xp...p..d... 01b9ffd4 c0 ff b9 01 64 f7 9f 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01b9ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01b9fff4 66 47 f5 74 58 70 0c 00 - 00 00 00 00 c9 00 ba 01 fG.tXp.......... 01ba0004 01 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01ba0014 00 00 00 00 06 00 00 00 - 00 00 21 00 00 00 00 00 ..........!..... 01ba0024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ba0034 00 00 00 00 00 00 00 00 - 00 00 00 01 08 00 00 00 ................ 01ba0044 00 00 00 00 01 02 00 05 - 00 00 00 00 01 17 00 00 ................ 01ba0054 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ba0064 00 00 00 00 00 00 00 19 - 00 00 00 00 00 00 00 00 ................ 01ba0074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ba0084 01 01 0c 00 00 00 00 00 - 00 00 00 00 00 00 01 0a ................ 01ba0094 00 00 00 00 00 00 00 00 - 00 01 06 00 00 00 00 00 ................ 01ba00a4 02 00 04 00 00 00 03 00 - 00 00 04 00 00 00 00 00 ................ 01ba00b4 00 01 01 00 00 04 00 00 - 00 06 00 00 00 00 00 01 ................ 线程 ID 0x6ac 的状态转储 eax=00000001 ebx=01ffff74 ecx=000004e4 edx=00000000 esi=77f8377b edi=000002ec eip=77f83786 esp=01ffff58 ebp=01ffff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02b5d52b=e850d445 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01FFFF7C 77E67837 000002EC 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 BEDAFF00 CFE4FF00 *----> 原始堆栈转储 <----* 01ffff58 0f 78 e6 77 ec 02 00 00 - 00 00 00 00 74 ff ff 01 .x.w........t... 01ffff68 00 00 00 00 c0 22 ba 01 - 3c 31 f8 77 00 44 5f 9a ....."..<1.w.D_. 01ffff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 ec 02 00 00 ....m1.w7x.w.... 01ffff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 ec 02 00 00 .'......k..u.... 01ffff98 c0 27 09 00 98 fc 05 00 - c0 22 ba 01 ec ff ff 01 .'......."...... 01ffffa8 c0 22 ba 01 9a f4 b2 75 - 13 fc b2 75 74 f4 b2 75 .".....u...ut..u 01ffffb8 dd 87 e6 77 c0 22 ba 01 - 98 fc 05 00 13 fc b2 75 ...w.".........u 01ffffc8 c0 22 ba 01 00 60 fd 7f - 95 13 00 00 c0 ff ff 01 ."...`.......... 01ffffd8 95 13 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01ffffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01fffff8 c0 22 ba 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ."......LCDT.... 02000008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 02000018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 02000028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 02000038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 02000048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 02000058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 02000068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 02000078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02000088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x254 的状态转储 eax=000000c0 ebx=0000003f ecx=025eef50 edx=00000000 esi=025eec00 edi=00000001 eip=77f837b2 esp=025eebe8 ebp=025effb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0314c1bb=00000000 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 025EFFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 025EFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 025eebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 5e 02 01 00 00 00 ...w......^..... 025eebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 025eec08 50 03 00 00 54 02 00 00 - 0f 00 00 00 0f 00 00 00 P...T........... 025eec18 54 03 00 00 24 03 00 00 - a0 03 00 00 b0 03 00 00 T...$........... 025eec28 c4 03 00 00 e4 03 00 00 - f4 03 00 00 08 04 00 00 ................ 025eec38 24 04 00 00 3c 04 00 00 - 4c 04 00 00 60 04 00 00 $...<...L...`... 025eec48 74 04 00 00 8c 04 00 00 - 9c 04 00 00 00 00 00 00 t............... 025eec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eeca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 025eed18 00 00 00 00 90 5d 0d 00 - a0 69 10 00 c0 6a 10 00 .....]...i...j.. 线程 ID 0x200 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=0262ff20 ebp=0262ff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0318d4f3=00000000 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0262FF6C 77E6A31D 0262FF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x6c4 的状态转储 eax=00000004 ebx=0269ff74 ecx=049fd178 edx=00000000 esi=77f8377b edi=000004b4 eip=77f83786 esp=0269ff58 ebp=0269ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:031fd52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0269FF7C 77E67837 000004B4 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 BEDAFF00 CFE4FF00 线程 ID 0x51c 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=027cff24 ebp=027cff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0332d4f7=31ffa803 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 027CFF70 77E6A31D 027CFF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 027CFFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 027CFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x674 的状态转储 eax=00118eb0 ebx=00000544 ecx=0280fe44 edx=00000000 esi=0280ff98 edi=77df7c12 eip=77df1d6b esp=0280ff58 ebp=0280ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0336d52b=dd01e100 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0336d52b=dd01e100 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0336d52b=dd01e100 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0280FF78 77535C36 0280FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0280FFB4 77E687DD 00000544 77555428 0006C2A4 00000544 winmm!midiOutGetNumDevs 0280FFEC 00000000 77535BB9 00000544 00000000 00000008 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0280ff58 4e 7c df 77 98 ff 80 02 - 00 00 00 00 00 00 00 00 N|.w............ 0280ff68 00 00 00 00 44 05 00 00 - 00 00 00 00 12 7c df 77 ....D........|.w 0280ff78 b4 ff 80 02 36 5c 53 77 - 98 ff 80 02 00 00 00 00 ....6\Sw........ 0280ff88 00 00 00 00 00 00 00 00 - 28 54 55 77 a4 c2 06 00 ........(TUw.... 0280ff98 46 02 4f 00 bc 03 00 00 - ec 26 83 02 00 00 00 00 F.O......&...... 0280ffa8 32 09 85 2e 8a 03 00 00 - 98 00 00 00 ec ff 80 02 2............... 0280ffb8 dd 87 e6 77 44 05 00 00 - 28 54 55 77 a4 c2 06 00 ...wD...(TUw.... 0280ffc8 44 05 00 00 00 c0 f9 7f - 00 00 53 77 c0 ff 80 02 D.........Sw.... 0280ffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 0280ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 0280fff8 44 05 00 00 00 00 00 00 - 08 00 00 00 01 01 00 00 D............... 02810008 ee ff ee ff 00 00 00 00 - 00 00 07 00 00 00 00 00 ................ 02810018 00 00 81 02 00 01 00 00 - 40 00 81 02 00 00 91 02 ........@....... 02810028 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02810038 40 00 81 02 00 00 00 00 - 81 00 08 00 01 01 08 00 @............... 02810048 1d 1d 1d 16 19 00 1d 1d - 1d 00 19 19 07 1d 1d 1d ................ 02810058 1d 16 1d 1d 00 00 1d 1d - 1d 07 16 16 1d 1d 1d 00 ................ 02810068 19 16 1d 1d 16 19 16 1d - 1d 1d 1d 1d 1d 1d 1d 1d ................ 02810078 0a 19 00 1d 07 19 19 16 - 1d 1d 1d 1d 1d 54 0d 0a .............T.. 02810088 1d 1d 16 1c 1e 15 00 1d - 00 15 1e 1e 18 16 1d 16 ................ 线程 ID 0x584 的状态转储 eax=0000001a ebx=02feff70 ecx=7ff9b000 edx=00000000 esi=77f8377b edi=000005b8 eip=77f83786 esp=02feff54 ebp=02feff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03b4d527=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02FEFF78 77E67837 000005B8 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 02feff54 0f 78 e6 77 b8 05 00 00 - 00 00 00 00 70 ff fe 02 .x.w........p... 02feff64 f8 98 0c 00 c0 9d bd 01 - 0d a8 86 2e f0 d8 ff ff ................ 02feff74 ff ff ff ff 01 00 00 00 - 37 78 e6 77 b8 05 00 00 ........7x.w.... 02feff84 01 00 00 00 00 00 00 00 - 04 a1 bd 75 b8 05 00 00 ...........u.... 02feff94 01 00 00 00 c0 9d bd 01 - ec ff fe 02 5d 28 df 77 ............](.w 02feffa4 c0 9d bd 01 00 00 00 00 - 9a f4 b2 75 84 05 a2 01 ...........u.... 02feffb4 74 f4 b2 75 dd 87 e6 77 - c0 9d bd 01 5d 28 df 77 t..u...w....](.w 02feffc4 84 05 a2 01 c0 9d bd 01 - 00 b0 f9 7f 84 05 a2 01 ................ 02feffd4 c0 ff fe 02 84 05 a2 01 - ff ff ff ff 56 18 e8 77 ............V..w 02feffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02fefff4 6b f4 b2 75 c0 9d bd 01 - 00 00 00 00 00 00 00 00 k..u............ 02ff0004 9f 16 73 00 10 00 90 01 - 16 00 b0 01 ff ff ff 00 ..s............. 02ff0014 ff ff ff 00 00 00 00 02 - 00 00 00 02 ff ff ff 00 ................ 02ff0024 ff ff ff 00 00 00 00 00 - 00 00 00 00 a8 03 86 00 ................ 02ff0034 01 00 00 00 0d 01 01 03 - 6a 00 00 00 28 00 00 00 ........j...(... 02ff0044 40 0f 00 00 70 1b 00 00 - 01 00 00 00 01 00 00 00 @...p........... 02ff0054 03 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ff0064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 02ff0074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ff0084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x6bc 的状态转储 eax=00000000 ebx=00000000 ecx=0312c880 edx=00000000 esi=02895f08 edi=00000000 eip=77df2268 esp=039fee64 ebp=039feea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0455c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 039FEEA8 76DF217C 0321061E 039FFFA4 028D9E28 00000000 user32!WaitMessage 039FEF30 76DF1F65 028D9E28 00000000 00000000 028D9E28 browseui!Ordinal102 039FFFAC 76C66950 028D9E28 77E687DD 028D9E28 00000000 browseui!Ordinal102 039FFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 039fee64 92 23 df 76 a4 ff 9f 03 - 28 9e 8d 02 00 00 00 00 .#.v....(....... 039fee74 38 06 76 01 02 80 00 00 - 00 00 00 00 00 00 00 00 8.v............. 039fee84 0d a8 86 2e 4c 01 00 00 - ef 00 00 00 98 52 07 00 ....L........R.. 039fee94 01 00 00 00 08 5f 89 02 - 01 44 00 80 58 a0 0f 00 ....._...D..X... 039feea4 00 00 00 00 30 ef 9f 03 - 7c 21 df 76 1e 06 21 03 ....0...|!.v..!. 039feeb4 a4 ff 9f 03 28 9e 8d 02 - 00 00 00 00 00 00 00 00 ....(........... 039feec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 039feed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 039feee4 f4 ee 9f 03 a4 ff 9f 03 - 00 00 00 00 00 00 00 00 ................ 039feef4 00 00 00 00 00 00 00 00 - 20 ef 9f 03 37 78 e6 77 ........ ...7x.w 039fef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 039fef14 ff 02 fa 77 b4 ee 9f 03 - 78 dd 06 00 dc ff 9f 03 ...w....x....... 039fef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 9f 03 Rz.vxi.v........ 039fef34 65 1f df 76 28 9e 8d 02 - 00 00 00 00 00 00 00 00 e..v(........... 039fef44 28 9e 8d 02 00 00 00 00 - 00 00 00 00 00 00 00 00 (............... 039fef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039fef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039fef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039fef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 039fef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x128 的状态转储 eax=0468ff6c ebx=80020000 ecx=0007a4b8 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0468fe28 ebp=0468ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:051ed3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0468FF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0468FFA8 787024DA 0281E4F8 0468FFEC 77E687DD 028879F8 rpcrt4!NdrConformantArrayMemorySize 0468FFB4 77E687DD 028879F8 00000000 00000000 028879F8 rpcrt4!NdrConformantArrayMemorySize 0468FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x6c8 的状态转储 eax=00000000 ebx=00050003 ecx=0007e584 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=04eefe28 ebp=04eeff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:05a4d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04EEFF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 04EEFFA8 787024DA 028978B0 04EEFFEC 77E687DD 0283CF30 rpcrt4!NdrConformantArrayMemorySize 04EEFFB4 77E687DD 0283CF30 00000000 00000000 0283CF30 rpcrt4!NdrConformantArrayMemorySize 04EEFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x510 的状态转储 eax=00000000 ebx=028e28f0 ecx=04a93b50 edx=028c0010 esi=00000000 edi=04f2c394 eip=765bf9c8 esp=04f2c364 ebp=04f2c3ac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: CoInternetCompareUrl 765bf9ae 57 push edi 765bf9af 8d7de8 lea edi,[ebp+0xe8] ss:05a8997e=???????? 765bf9b2 8b4b30 mov ecx,[ebx+0x30] ds:0343fec2=???????? 765bf9b5 57 push edi 765bf9b6 ff75f8 push dword ptr [ebp+0xf8] ss:05a8997e=???????? 765bf9b9 8b433c mov eax,[ebx+0x3c] ds:0343fec2=???????? 765bf9bc 39734c cmp [ebx+0x4c],esi ds:0343fec2=???????? 765bf9bf 8975e8 mov [ebp+0xe8],esi ss:05a8997e=???????? 765bf9c2 ff732c push dword ptr [ebx+0x2c] ds:0343fec2=???????? 765bf9c5 8975f0 mov [ebp+0xf0],esi ss:05a8997e=???????? 错误 ->765bf9c8 8b10 mov edx,[eax] ds:00000000=???????? 765bf9ca 6800c00000 push 0xc000 765bf9cf 51 push ecx 765bf9d0 6802200000 push 0x2002 765bf9d5 56 push esi 765bf9d6 50 push eax 765bf9d7 0f84a7000000 je CoInternetCompareUrl+0x6be0 (765bfa84) 765bf9dd ff520c call dword ptr [edx+0xc] ds:0341d5e2=???????? 765bf9e0 3bc6 cmp eax,esi 765bf9e2 8945ec mov [ebp+0xec],eax ss:05a8997e=???????? 765bf9e5 0f84a1000000 je CoInternetCompareUrl+0x6be8 (765bfa8c) 765bf9eb 8b4338 mov eax,[ebx+0x38] ds:0343fec2=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04F2C3AC 765BF923 04ABBB6D 000013FF 04F2C400 00000000 urlmon!CoInternetCompareUrl 04F2C408 765994AF 028C0080 04ABBB6D 000013FF 04F2C430 urlmon!CoInternetCompareUrl 04F2C438 7659A46B 00000000 04ABBB6D 000013FF 04F2C45C urlmon!CopyStgMedium 04F2C464 7659A3C9 00000000 04ABBB6D 000013FF 04F2C484 urlmon!FindMediaType 04F2C488 75AC4A75 02848510 04ABBB6D 000013FF 04F2C4D0 urlmon!FindMediaType 04F2C4AC 75AC4918 04ABBB6D 000013FF 04F2C4D0 01DC7B80 mshtml! 04F2C4D4 75ABEFE7 75C88E28 01DC69B0 04F2C51C 00000000 mshtml! 00000000 00000000 00000000 00000000 00000000 00000000 mshtml! *----> 原始堆栈转储 <----* 04f2c364 60 5b a9 04 60 02 00 00 - 94 c3 f2 04 9c c3 f2 04 `[..`........... 04f2c374 00 00 00 00 00 c4 f2 04 - f0 28 8e 02 80 00 8c 02 .........(...... 04f2c384 00 00 00 00 01 00 00 00 - 00 00 07 00 0e 04 00 00 ................ 04f2c394 00 00 00 00 00 00 00 00 - 00 00 00 00 00 6f ac 75 .............o.u 04f2c3a4 60 02 00 00 00 00 00 00 - 08 c4 f2 04 23 f9 5b 76 `...........#.[v 04f2c3b4 6d bb ab 04 ff 13 00 00 - 00 c4 f2 04 00 00 00 00 m............... 04f2c3c4 00 c4 f2 04 00 00 00 00 - 29 dd 59 76 f0 28 8e 02 ........).Yv.(.. 04f2c3d4 6d bb ab 04 ff 13 00 00 - 00 c4 f2 04 2d 95 59 76 m...........-.Yv 04f2c3e4 08 1e 86 02 6d bb ab 04 - ff 13 00 00 00 c4 f2 04 ....m........... 04f2c3f4 6d bb ab 04 40 af 59 76 - f8 fe 8b 02 00 00 00 00 m...@.Yv........ 04f2c404 01 00 00 00 38 c4 f2 04 - af 94 59 76 80 00 8c 02 ....8.....Yv.... 04f2c414 6d bb ab 04 ff 13 00 00 - 30 c4 f2 04 48 ae 59 76 m.......0...H.Yv 04f2c424 6d bb ab 04 28 b5 12 00 - 28 00 8c 02 00 00 00 00 m...(...(....... 04f2c434 01 00 00 00 64 c4 f2 04 - 6b a4 59 76 00 00 00 00 ....d...k.Yv.... 04f2c444 6d bb ab 04 ff 13 00 00 - 5c c4 f2 04 00 00 00 00 m.......\....... 04f2c454 10 85 84 02 d0 c4 f2 04 - 00 00 00 00 01 00 00 00 ................ 04f2c464 88 c4 f2 04 c9 a3 59 76 - 00 00 00 00 6d bb ab 04 ......Yv....m... 04f2c474 ff 13 00 00 84 c4 f2 04 - 00 00 00 00 b0 69 dc 01 .............i.. 04f2c484 00 00 00 00 ac c4 f2 04 - 75 4a ac 75 10 85 84 02 ........uJ.u.... 04f2c494 6d bb ab 04 ff 13 00 00 - d0 c4 f2 04 00 00 00 00 m............... 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1100) 时间: 2003-8-27 @ 15:13:41.453 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 1132 Explorer.exe 928 Rundll32.exe 404 daemon.exe 1120 ccApp.exe 1324 RealPlay.exe 980 internat.exe 344 AcroTray.exe 1348 wuauclt.exe 1108 XDICT.exe 1648 RUNDLL32.exe 1332 RUNDLL32.exe 1076 cthighway.exe 1048 conime.exe 1684 telnet.exe 1264 LeapFTP.exe 1100 IEXPLORE.exe 1084 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (016D0000 - 016D8000) (01720000 - 01730000) (01840000 - 0185D000) (01870000 - 0188C000) (01890000 - 018A9000) (780C0000 - 78121000) (773A0000 - 773B5000) (018F0000 - 018F8000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (770F0000 - 772ED000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01BD0000 - 01BE7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (75A60000 - 75A88000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (77530000 - 77560000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75CE0000 - 75CE6000) (023C0000 - 023DB000) (024F0000 - 0250E000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (68EF0000 - 68F0F000) (02B30000 - 02CBD000) (76AF0000 - 76B2D000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (6DDA0000 - 6DDAA000) (688D0000 - 688DE000) (751C0000 - 751D5000) (6AC80000 - 6ACBC000) (766B0000 - 766B9000) (76F60000 - 76F6F000) 线程 ID 0x5c4 的状态转储 eax=00000000 ebx=00000000 ecx=02cc1fd0 edx=00000000 esi=0007ac70 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 01460580 0006EE88 0007AA88 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA88 00000001 0007AA88 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA88 76C6667E 0007AA88 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F2 00000001 00401A46 000728F2 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F2 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 88 aa 07 00 00 00 00 00 .#.v............ 0006dd58 f4 05 27 01 02 80 00 00 - 00 00 00 00 00 00 00 00 ..'............. 0006dd68 bd a0 4e 2f 5c 01 00 00 - fd 00 00 00 00 00 00 00 ..N/\........... 0006dd78 02 00 00 00 70 ac 07 00 - 01 44 00 80 28 53 07 00 ....p....D..(S.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 80 05 46 01 ........|!.v..F. 0006dd98 88 ee 06 00 88 aa 07 00 - 00 00 00 00 00 00 00 00 ................ 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 88 aa 07 00 - 01 00 00 00 88 aa 07 00 e..v............ 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x4c4 的状态转储 eax=00bc0003 ebx=00040002 ecx=7ffdd000 edx=00000000 esi=0007e2e0 edi=00000100 eip=77f83bb8 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0172d3fb=7b272073 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 787020D9 787025B9 0007E2E0 00000000 4007DDFC ntdll!NtReplyWaitReceivePortEx 00BCFFA8 787024DA 0007C150 00BCFFEC 77E687DD 0007E410 rpcrt4!NdrConformantArrayMemorySize 00BCFFB4 77E687DD 0007E410 00000000 4007DDFC 0007E410 rpcrt4!NdrConformantArrayMemorySize 00BCFFEC 00000000 787024C2 0007E410 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 00bcfe28 85 22 70 78 04 01 00 00 - 54 ff bc 00 00 00 00 00 ."px....T....... 00bcfe38 48 2a 8b 02 58 ff bc 00 - d8 c0 07 00 b8 e2 07 00 H*..X........... 00bcfe48 6d 31 f8 77 1f 00 00 00 - 90 95 89 81 90 95 89 81 m1.w............ 00bcfe58 00 00 00 00 01 00 00 00 - b4 ab 73 bc 00 00 00 00 ..........s..... 00bcfe68 18 80 00 00 78 ab 73 bc - 00 00 00 00 72 4f 41 80 ....x.s.....rOA. 00bcfe78 b0 96 89 81 60 57 89 81 - 68 ac 73 bc ec 16 00 00 ....`W..h.s..... 00bcfe88 04 00 00 00 c8 7b 18 81 - 66 41 4a 80 80 f3 06 00 .....{..fAJ..... 00bcfe98 00 00 00 00 48 f3 06 00 - 90 da e9 03 00 00 00 00 ....H........... 00bcfea8 00 00 00 00 01 00 00 00 - 19 00 02 00 00 00 00 00 ................ 00bcfeb8 19 00 02 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfec8 4c 04 00 00 00 00 00 00 - 0c ac 73 bc 00 00 00 00 L.........s..... 00bcfed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcfef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00bcff08 00 00 00 00 a8 28 50 c0 - ef 00 00 00 00 20 50 c0 .....(P...... P. 00bcff18 19 00 02 00 06 00 02 00 - ef 00 00 00 01 00 00 00 ................ 00bcff28 00 20 50 c0 20 10 10 81 - 20 19 3a 81 00 00 00 00 . P. ... .:..... 00bcff38 20 19 3a 81 b0 1a 3a 81 - 64 ac 73 bc f3 da 42 80 .:...:.d.s...B. 00bcff48 a4 da 42 80 d4 4b 06 80 - 80 1a 3a 81 02 00 04 00 ..B..K....:..... 00bcff58 00 a2 2f 4d ff ff ff ff - 50 fe bc 00 00 00 02 80 ../M....P....... 线程 ID 0x50c 的状态转储 eax=019ffc7c ebx=ffffffff ecx=00000000 edx=00000000 esi=7fffffff edi=00000102 eip=77f83786 esp=019ffacc ebp=019ffb04 iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0255d09f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFB04 74F57EE6 000001F8 000001FC 00000000 00000004 ntdll!NtWaitForSingleObject 019FFBF0 74FB1DA9 00000001 019FFE84 019FFC7C 019FFD80 msafd!WSPSetSockOpt 019FFC54 76BD6F2E 00000001 019FFE84 019FFC7C 019FFD80 ws2_32!select 019FFFB0 76BD6E24 77E687DD 000A0B38 7FFDC000 00000040 wininet!InternetSetStatusCallbackA 019FFFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 019ffacc d2 bc f5 74 f8 01 00 00 - 01 00 00 00 f0 fa 9f 01 ...t............ 019ffadc 84 fe 9f 01 78 fb 9f 01 - 68 fb 9f 01 b2 64 7a be ....x...h....dz. 019ffaec 6a 6c c3 01 ff ff ff ff - ff ff ff 7f a0 1b 0a 00 jl.............. 019ffafc 00 00 00 00 00 00 00 00 - f0 fb 9f 01 e6 7e f5 74 .............~.t 019ffb0c f8 01 00 00 fc 01 00 00 - 00 00 00 00 04 00 00 00 ................ 019ffb1c 80 fd 9f 01 f0 36 0a 00 - 7c fc 9f 01 00 00 00 00 .....6..|....... 019ffb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff fc 01 00 00 ................ 019ffb3c f8 01 00 00 00 00 00 00 - 00 00 07 00 90 fb 9f 01 ................ 019ffb4c 17 20 01 00 80 fb 9f 01 - 10 00 00 00 00 00 00 00 . .............. 019ffb5c 06 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 019ffb6c ff ff ff ff 01 00 00 00 - 00 1b 0a 00 fc 01 00 00 ................ 019ffb7c 19 00 00 00 30 00 00 00 - fc 01 00 00 a0 41 c9 77 ....0........A.w 019ffb8c a0 41 c9 77 dc fb 9f 01 - 95 2b f8 77 08 36 f8 77 .A.w.....+.w.6.w 019ffb9c ff ff ff ff ec fb 9f 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 019ffbac a0 1b 0a 00 24 00 00 00 - 00 00 00 00 68 fb 9f 01 ....$.......h... 019ffbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 019ffbcc 00 00 00 00 1c 00 00 00 - 84 fb 9f 01 1c fb 9f 01 ................ 019ffbdc 24 fc 9f 01 44 fc 9f 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 019ffbec ff ff ff ff 54 fc 9f 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 019ffbfc 84 fe 9f 01 7c fc 9f 01 - 80 fd 9f 01 90 ff 9f 01 ....|........... 线程 ID 0x644 的状态转储 eax=00000000 ebx=00000004 ecx=00000002 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=01a8fd24 ebp=01a8fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:025ed2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A8FD70 77E6A31D 01A8FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 01A8FFB4 77E687DD 00000005 000A2424 7FFDA000 000A4488 kernel32!WaitForMultipleObjects 01A8FFEC 00000000 777F21FE 000A4488 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a8fd24 b7 7a e6 77 04 00 00 00 - 48 fd a8 01 01 00 00 00 .z.w....H....... 01a8fd34 00 00 00 00 00 00 00 00 - 01 00 00 00 88 44 0a 00 .............D.. 01a8fd44 01 00 00 00 10 02 00 00 - 14 02 00 00 24 02 00 00 ............$... 01a8fd54 00 03 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a8fd64 20 02 00 00 11 00 00 00 - 02 00 00 00 b4 ff a8 01 ............... 01a8fd74 1d a3 e6 77 48 fd a8 01 - 01 00 00 00 00 00 00 00 ...wH........... 01a8fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 01a8fd94 b0 fe a8 01 00 00 00 00 - ff ff ff ff 88 44 0a 00 .............D.. 01a8fda4 00 a0 fd 7f 24 24 0a 00 - 00 00 00 00 38 00 00 00 ....$$......8... 01a8fdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 01a8fdc4 23 00 00 00 23 00 00 00 - 24 24 0a 00 00 a0 fd 7f #...#...$$...... 01a8fdd4 88 44 0a 00 00 a0 fd 7f - 00 a0 fd 7f fe 21 7f 77 .D...........!.w 01a8fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 01a8fdf4 fc ff a8 01 23 00 00 00 - 99 31 00 00 01 00 00 00 ....#....1...... 01a8fe04 28 93 00 00 c0 fb 9a 81 - 00 07 00 00 ae cc 44 80 (.............D. 01a8fe14 28 93 00 00 c0 fb 9a 81 - 28 93 00 00 c0 fb 9a 81 (.......(....... 01a8fe24 01 c2 f9 7f 69 14 00 00 - 41 d6 44 80 69 14 00 00 ....i...A.D.i... 01a8fe34 f0 c0 0f 81 00 c0 f9 7f - fc 07 30 c0 00 00 00 00 ..........0..... 01a8fe44 84 4b 23 bc 69 14 00 00 - 84 cf f9 7f 00 00 00 00 .K#.i........... 01a8fe54 01 00 00 00 00 00 00 00 - 00 d0 f9 7f fc 07 30 c0 ..............0. 线程 ID 0x65c 的状态转储 eax=02806e80 ebx=80020000 ecx=000a9b38 edx=00000000 esi=0007e2e0 edi=00000100 eip=77f83bb8 esp=01affe28 ebp=01afff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0265d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AFFF74 787020D9 787025B9 0007E2E0 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 01AFFFA8 787024DA 0007C150 01AFFFEC 77E687DD 000AF170 rpcrt4!NdrConformantArrayMemorySize 01AFFFB4 77E687DD 000AF170 00000000 00000000 000AF170 rpcrt4!NdrConformantArrayMemorySize 01AFFFEC 00000000 787024C2 000AF170 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01affe28 85 22 70 78 04 01 00 00 - 54 ff af 01 00 00 00 00 ."px....T....... 01affe38 e0 4d 0b 00 58 ff af 01 - d8 c0 07 00 c8 3e 0b 00 .M..X........>.. 01affe48 6d 31 f8 77 01 32 fd 7f - 69 14 00 00 41 d6 44 80 m1.w.2..i...A.D. 01affe58 69 14 00 00 f0 c0 0f 81 - 00 30 fd 7f fc 07 30 c0 i........0....0. 01affe68 00 00 00 00 ec 09 00 00 - 69 14 00 00 0a 00 00 00 ........i....... 01affe78 00 00 00 00 01 00 00 00 - 00 00 00 00 ee 16 00 00 ................ 01affe88 fc 07 30 c0 38 2c 6a bc - c8 d4 44 80 00 30 fd 7f ..0.8,j...D..0.. 01affe98 00 00 00 00 00 00 00 00 - 00 30 fd 7f c8 ab 41 81 .........0....A. 01affea8 01 c1 0f 81 00 00 00 00 - 4c ff 1f c0 a0 02 c6 82 ........L....... 01affeb8 70 c0 0f 81 70 c0 0f 81 - 00 91 4a 80 e8 2b 6a bc p...p.....J..+j. 01affec8 00 00 00 00 eb 4b 06 80 - 08 00 00 00 46 02 00 00 .....K......F... 01affed8 cb fa 42 80 20 c0 0f 81 - 20 c0 0f 81 1b 91 4a 80 ..B. ... .....J. 01affee8 79 d0 52 80 00 30 fd 7f - 70 2c 6a bc 4d d5 52 80 y.R..0..p,j.M.R. 01affef8 01 00 00 00 a0 30 1d 81 - 01 00 00 00 50 3a 72 81 .....0......P:r. 01afff08 60 bd 5a 81 20 c0 0f 81 - e0 60 7a e2 1b 55 45 80 `.Z. ....`z..UE. 01afff18 00 00 00 82 00 00 00 02 - 64 2c 6a bc 04 22 49 80 ........d,j.."I. 01afff28 88 9c 89 81 20 10 10 81 - 40 75 1e 81 00 00 00 00 .... ...@u...... 01afff38 40 75 1e 81 d0 76 1e 81 - 64 2c 6a bc f3 da 42 80 @u...v..d,j...B. 01afff48 a4 da 42 80 d4 4b 06 80 - a0 76 1e 81 00 00 02 80 ..B..K...v...... 01afff58 00 a2 2f 4d ff ff ff ff - 50 fe af 01 00 00 02 80 ../M....P....... 线程 ID 0x5ac 的状态转储 eax=00162a2c ebx=00000102 ecx=0313d8bc edx=00000000 esi=77f8318c edi=01b4ff74 eip=77f83197 esp=01b4ff60 ebp=01b4ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:026ad533=00000000 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01B4FF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x6a8 的状态转储 eax=031c0180 ebx=000b4710 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=01bcff84 ebp=01bcffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:0272d557=00000000 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:0272d557=00000000 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:0272d557=00000000 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:0272d557=00000000 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01BCFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000B4710 ntdll!ZwRemoveIoCompletion 01BCFFEC 00000000 74F54766 000B4710 00000000 00905A4D kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01bcff84 b8 47 f5 74 b4 02 00 00 - bc ff bc 01 b0 ff bc 01 .G.t............ 01bcff94 a4 ff bc 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01bcffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 78 04 2d 04 ...........tx.-. 01bcffb4 ec ff bc 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01bcffc4 00 00 00 00 10 47 0b 00 - 00 50 fd 7f 34 00 00 00 .....G...P..4... 01bcffd4 c0 ff bc 01 34 00 00 00 - ff ff ff ff 56 18 e8 77 ....4.......V..w 01bcffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01bcfff4 66 47 f5 74 10 47 0b 00 - 00 00 00 00 4d 5a 90 00 fG.t.G......MZ.. 01bd0004 03 00 00 00 04 00 00 00 - ff ff 00 00 b8 00 00 00 ................ 01bd0014 00 00 00 00 40 00 00 00 - 00 00 00 00 00 00 00 00 ....@........... 01bd0024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01bd0034 00 00 00 00 00 00 00 00 - d0 00 00 00 0e 1f ba 0e ................ 01bd0044 00 b4 09 cd 21 b8 01 4c - cd 21 54 68 69 73 20 70 ....!..L.!This p 01bd0054 72 6f 67 72 61 6d 20 63 - 61 6e 6e 6f 74 20 62 65 rogram cannot be 01bd0064 20 72 75 6e 20 69 6e 20 - 44 4f 53 20 6d 6f 64 65 run in DOS mode 01bd0074 2e 0d 0d 0a 24 00 00 00 - 00 00 00 00 7b 93 be 69 ....$.......{..i 01bd0084 3f f2 d0 3a 3f f2 d0 3a - 3f f2 d0 3a 69 ed c3 3a ?..:?..:?..:i..: 01bd0094 33 f2 d0 3a 3f f2 d1 3a - 41 f2 d0 3a 55 ee d2 3a 3..:?..:A..:U..: 01bd00a4 26 f2 d0 3a 66 d1 c3 3a - 28 f2 d0 3a 15 fa d6 3a &..:f..:(..:...: 01bd00b4 3e f2 d0 3a 3f f2 d0 3a - 24 f2 d0 3a 52 69 63 68 >..:?..:$..:Rich 线程 ID 0x5f4 的状态转储 eax=00000001 ebx=0205ff74 ecx=000004e4 edx=00000000 esi=77f8377b edi=00000238 eip=77f83786 esp=0205ff58 ebp=0205ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02bbd52b=0ceb0000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0205FF7C 77E67837 00000238 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 0205ff58 0f 78 e6 77 38 02 00 00 - 00 00 00 00 74 ff 05 02 .x.w8.......t... 0205ff68 00 00 00 00 c0 22 c0 01 - 3c 31 f8 77 00 44 5f 9a ....."..<1.w.D_. 0205ff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 38 02 00 00 ....m1.w7x.w8... 0205ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 38 02 00 00 .'......k..u8... 0205ff98 c0 27 09 00 2c 20 06 00 - c0 22 c0 01 ec ff 05 02 .'.., ..."...... 0205ffa8 c0 22 c0 01 9a f4 b2 75 - 13 fc b2 75 74 f4 b2 75 .".....u...ut..u 0205ffb8 dd 87 e6 77 c0 22 c0 01 - 2c 20 06 00 13 fc b2 75 ...w.".., .....u 0205ffc8 c0 22 c0 01 00 40 fd 7f - 95 18 00 00 c0 ff 05 02 ."...@.......... 0205ffd8 95 18 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 0205ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 0205fff8 c0 22 c0 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ."......LCDT.... 02060008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 02060018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 02060028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 02060038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 02060048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 02060058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 02060068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 02060078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02060088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x324 的状态转储 eax=0351f914 ebx=021fff74 ecx=042e1c78 edx=00000000 esi=77f8377b edi=00000338 eip=77f83786 esp=021fff58 ebp=021fff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02d5d52b=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 021FFF7C 77E67837 00000338 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x140 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0237ff24 ebp=0237ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:02edd4f7=ffffff00 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0237FF70 77E6A31D 0237FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0237FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0237FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x660 的状态转储 eax=00000400 ebx=000003cc ecx=023bfdb8 edx=00000000 esi=023bff98 edi=77df7c12 eip=77df1d6b esp=023bff58 ebp=023bff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:02f1d52b=c6d2ed00 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:02f1d52b=c6d2ed00 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:02f1d52b=c6d2ed00 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 023BFF78 77535C36 023BFF98 00000000 00000000 00000000 user32!TranslateMessageEx 023BFFB4 77E687DD 000003CC 77555428 000691BC 000003CC winmm!midiOutGetNumDevs 023BFFEC 00000000 77535BB9 000003CC 00000000 00905A4D kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 023bff58 4e 7c df 77 98 ff 3b 02 - 00 00 00 00 00 00 00 00 N|.w..;......... 023bff68 00 00 00 00 cc 03 00 00 - 00 00 00 00 12 7c df 77 .............|.w 023bff78 b4 ff 3b 02 36 5c 53 77 - 98 ff 3b 02 00 00 00 00 ..;.6\Sw..;..... 023bff88 00 00 00 00 00 00 00 00 - 28 54 55 77 bc 91 06 00 ........(TUw.... 023bff98 e0 05 a6 01 bc 03 00 00 - 94 93 0c 00 00 00 00 00 ................ 023bffa8 18 ce 47 2f c0 00 00 00 - 4a 00 00 00 ec ff 3b 02 ..G/....J.....;. 023bffb8 dd 87 e6 77 cc 03 00 00 - 28 54 55 77 bc 91 06 00 ...w....(TUw.... 023bffc8 cc 03 00 00 00 d0 f9 7f - 00 00 53 77 c0 ff 3b 02 ..........Sw..;. 023bffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 023bffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 023bfff8 cc 03 00 00 00 00 00 00 - 4d 5a 90 00 03 00 00 00 ........MZ...... 023c0008 04 00 00 00 ff ff 00 00 - b8 00 00 00 00 00 00 00 ................ 023c0018 40 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 @............... 023c0028 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 023c0038 00 00 00 00 f8 00 00 00 - 0e 1f ba 0e 00 b4 09 cd ................ 023c0048 21 b8 01 4c cd 21 54 68 - 69 73 20 70 72 6f 67 72 !..L.!This progr 023c0058 61 6d 20 63 61 6e 6e 6f - 74 20 62 65 20 72 75 6e am cannot be run 023c0068 20 69 6e 20 44 4f 53 20 - 6d 6f 64 65 2e 0d 0d 0a in DOS mode.... 023c0078 24 00 00 00 00 00 00 00 - 0f 78 fc 0d 4b 19 92 5e $........x..K..^ 023c0088 4b 19 92 5e 4b 19 92 5e - 30 05 9e 5e 49 19 92 5e K..^K..^0..^I..^ 线程 ID 0x204 的状态转储 eax=000000c0 ebx=0000003f ecx=027def50 edx=00000000 esi=027dec00 edi=00000001 eip=77f837b2 esp=027debe8 ebp=027dffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0333c1bb=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 027DFFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 027DFFEC 00000000 77F81E0B 0006C16C 00000000 00000008 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 027debe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 7d 02 01 00 00 00 ...w......}..... 027debf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 027dec08 34 04 00 00 04 02 00 00 - 0f 00 00 00 0f 00 00 00 4............... 027dec18 38 04 00 00 08 04 00 00 - 84 04 00 00 94 04 00 00 8............... 027dec28 a8 04 00 00 c8 04 00 00 - d8 04 00 00 ec 04 00 00 ................ 027dec38 04 05 00 00 1c 05 00 00 - 2c 05 00 00 40 05 00 00 ........,...@... 027dec48 54 05 00 00 6c 05 00 00 - 7c 05 00 00 00 00 00 00 T...l...|....... 027dec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027dec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027dec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027dec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027dec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027deca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027decb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027decc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027decd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027dece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027decf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027ded08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 027ded18 00 00 00 00 50 3d 10 00 - b8 72 7e 02 d8 73 7e 02 ....P=...r~..s~. 线程 ID 0x5e0 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=0291ff20 ebp=0291ff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0347d4f3=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0291FF6C 77E6A31D 0291FF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects *----> 原始堆栈转储 <----* 0291ff20 b7 7a e6 77 03 00 00 00 - 44 ff 91 02 01 00 00 00 .z.w....D....... 0291ff30 00 00 00 00 00 00 00 00 - b0 00 c4 77 00 00 00 00 ...........w.... 0291ff40 f6 76 e6 77 ac 04 00 00 - b0 04 00 00 f0 04 00 00 .v.w............ 0291ff50 00 00 00 00 00 00 00 00 - b0 36 07 00 16 00 18 00 .........6...... 0291ff60 24 ed bf 77 00 00 00 00 - 08 ff 91 02 00 00 00 00 $..w............ 0291ff70 1d a3 e6 77 44 ff 91 02 - 01 00 00 00 00 00 00 00 ...wD........... 0291ff80 00 00 00 00 00 00 00 00 - 2c ec bf 77 03 00 00 00 ........,..w.... 0291ff90 4c 01 c4 77 00 00 00 00 - ff ff ff ff 50 be 06 00 L..w........P... 0291ffa0 e6 7e f8 77 ec ff 91 02 - 00 00 00 00 00 00 00 00 .~.w............ 0291ffb0 03 00 00 00 00 00 bf 77 - dd 87 e6 77 00 00 00 00 .......w...w.... 0291ffc0 50 be 06 00 e6 7e f8 77 - 00 00 00 00 00 a0 f9 7f P....~.w........ 0291ffd0 00 00 00 00 c0 ff 91 02 - 00 00 00 00 ff ff ff ff ................ 0291ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 0291fff0 00 00 00 00 a0 eb bf 77 - 00 00 00 00 00 00 00 00 .......w........ 02920000 08 00 00 00 01 01 00 00 - ee ff ee ff 00 00 00 00 ................ 02920010 00 00 75 00 00 e0 0c 00 - 00 00 92 02 00 01 00 00 ..u............. 02920020 40 00 92 02 00 00 a2 02 - ce 00 00 00 01 00 00 00 @............... 02920030 88 05 75 00 00 00 00 00 - e8 1f 95 02 00 00 00 00 ..u............. 02920040 03 01 08 00 01 01 08 00 - 08 a0 75 00 0b 00 92 02 ..........u..... 02920050 1f 00 09 00 00 00 00 00 - 00 00 f8 ff 00 00 00 00 ................ 线程 ID 0x274 的状态转储 eax=00000000 ebx=00000001 ecx=01010101 edx=00000000 esi=77f837a7 edi=00000001 eip=77f837b2 esp=02dafe60 ebp=02dafeac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0390d433=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02DAFEAC 77DF2A00 02DAFE84 00000001 00000000 02DAFEA4 ntdll!NtWaitForMultipleObjects 02DAFF08 77DF2A77 02DAFED4 00000000 0000EA60 000000FF user32!MsgWaitForMultipleObjectsEx 02DAFF24 76DD9CD1 00000000 00000000 00000000 0000EA60 user32!MsgWaitForMultipleObjects 00090550 00000002 000900A0 00000001 00000274 0000034C browseui!DllGetClassObject *----> 原始堆栈转储 <----* 02dafe60 b7 7a e6 77 01 00 00 00 - 84 fe da 02 01 00 00 00 .z.w............ 02dafe70 00 00 00 00 a4 fe da 02 - 00 00 00 00 00 00 00 00 ................ 02dafe80 01 00 00 00 40 06 00 00 - 00 04 00 00 60 ff da 02 ....@.......`... 02dafe90 06 04 00 00 88 fe da 02 - f0 fe da 02 dc ff da 02 ................ 02dafea0 38 27 e4 77 00 ba 3c dc - ff ff ff ff 08 ff da 02 8'.w..<......... 02dafeb0 00 2a df 77 84 fe da 02 - 01 00 00 00 00 00 00 00 .*.w............ 02dafec0 a4 fe da 02 00 00 00 00 - 00 04 00 00 08 2f c5 77 ............./.w 02dafed0 06 04 00 00 40 06 00 00 - e0 fe da 02 30 00 00 00 ....@.......0... 02dafee0 00 00 03 00 01 00 00 00 - fc 1f 00 10 80 7c df 77 .............|.w 02dafef0 00 00 00 00 04 04 00 00 - 00 00 00 00 cc 86 f9 7f ................ 02daff00 00 00 00 00 40 06 00 00 - 24 ff da 02 77 2a df 77 ....@...$...w*.w 02daff10 d4 fe da 02 00 00 00 00 - 60 ea 00 00 ff 00 00 00 ........`....... 02daff20 00 00 00 00 50 05 09 00 - d1 9c dd 76 00 00 00 00 ....P......v.... 02daff30 00 00 00 00 00 00 00 00 - 60 ea 00 00 ff 00 00 00 ........`....... 02daff40 50 05 09 00 00 00 00 00 - ac ff da 02 6d 31 f8 77 P...........m1.w 02daff50 01 00 00 00 60 ea 00 00 - fe ff ff ff 00 00 00 00 ....`........... 02daff60 00 00 00 00 04 04 00 00 - 00 00 00 00 00 00 00 00 ................ 02daff70 87 82 4e 2f 16 00 00 00 - 0d 02 00 00 96 9b dd 76 ..N/...........v 02daff80 00 00 00 00 a0 41 c9 77 - 13 90 c5 77 50 05 09 00 .....A.w...wP... 02daff90 80 73 06 00 00 00 c5 77 - 00 00 00 00 0c 00 00 00 .s.....w........ 线程 ID 0x470 的状态转储 eax=7ffdf000 ebx=034dff70 ecx=00010101 edx=00000000 esi=77f8377b edi=00000650 eip=77f83786 esp=034dff54 ebp=034dff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0403d527=7d5da804 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 034DFF78 77E67837 00000650 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x23c 的状态转储 eax=00000000 ebx=00050003 ecx=0007e588 edx=00000000 esi=0007e2e0 edi=00000100 eip=77f83bb8 esp=0647fe28 ebp=0647ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:06fdd3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0647FF74 787020D9 787025B9 0007E2E0 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0647FFA8 787024DA 0007C150 0647FFEC 77E687DD 0013B370 rpcrt4!NdrConformantArrayMemorySize 0647FFB4 77E687DD 0013B370 00000000 00000000 0013B370 rpcrt4!NdrConformantArrayMemorySize 0647FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x5cc 的状态转储 eax=00000004 ebx=00000002 ecx=041c26d4 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=06ebfe5c ebp=06ebfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:07a1d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06EBFEA8 77DF2A00 06EBFE80 00000001 00000000 06EBFEA0 ntdll!NtWaitForMultipleObjects 06EBFF04 77DF2A77 06EBFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 06EBFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 06EBFF74 77C58FFD 06EBFFA0 06EBFFA4 06EBFFA8 06EBFF9C shlwapi!Ordinal271 06EBFFAC 77C58F85 00000000 77E687DD 00000000 00000000 shlwapi!Ordinal394 06EBFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x4d0 的状态转储 eax=00000000 ebx=000cbb18 ecx=041f63c0 edx=000ef4d0 esi=00000000 edi=06efc394 eip=765bf9c8 esp=06efc364 ebp=06efc3ac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: CoInternetCompareUrl 765bf9ae 57 push edi 765bf9af 8d7de8 lea edi,[ebp+0xe8] ss:07a5997e=???????? 765bf9b2 8b4b30 mov ecx,[ebx+0x30] ds:00c290ea=???????? 765bf9b5 57 push edi 765bf9b6 ff75f8 push dword ptr [ebp+0xf8] ss:07a5997e=???????? 765bf9b9 8b433c mov eax,[ebx+0x3c] ds:00c290ea=???????? 765bf9bc 39734c cmp [ebx+0x4c],esi ds:00c290ea=???????? 765bf9bf 8975e8 mov [ebp+0xe8],esi ss:07a5997e=???????? 765bf9c2 ff732c push dword ptr [ebx+0x2c] ds:00c290ea=???????? 765bf9c5 8975f0 mov [ebp+0xf0],esi ss:07a5997e=???????? 错误 ->765bf9c8 8b10 mov edx,[eax] ds:00000000=???????? 765bf9ca 6800c00000 push 0xc000 765bf9cf 51 push ecx 765bf9d0 6802200000 push 0x2002 765bf9d5 56 push esi 765bf9d6 50 push eax 765bf9d7 0f84a7000000 je CoInternetCompareUrl+0x6be0 (765bfa84) 765bf9dd ff520c call dword ptr [edx+0xc] ds:00c4caa2=???????? 765bf9e0 3bc6 cmp eax,esi 765bf9e2 8945ec mov [ebp+0xec],eax ss:07a5997e=???????? 765bf9e5 0f84a1000000 je CoInternetCompareUrl+0x6be8 (765bfa8c) 765bf9eb 8b4338 mov eax,[ebx+0x38] ds:00c290ea=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06EFC3AC 765BF923 041E868B 00000E51 06EFC400 00000000 urlmon!CoInternetCompareUrl 06EFC408 765994AF 000EF540 041E868B 00000E51 06EFC430 urlmon!CoInternetCompareUrl 06EFC438 7659A46B 00000000 041E868B 00000E51 06EFC45C urlmon!CopyStgMedium 06EFC464 7659A3C9 00000000 041E868B 00000E51 06EFC484 urlmon!FindMediaType 06EFC488 75AC4A75 042AC920 041E868B 00000E51 06EFC4D0 urlmon!FindMediaType 06EFC4AC 75AC4918 041E868B 00000E51 06EFC4D0 01E9A200 mshtml! 06EFC4D4 75ABEFE7 75C88E28 01E89DC0 06EFC51C 00000000 mshtml! 00000000 00000000 00000000 00000000 00000000 00000000 mshtml! *----> 原始堆栈转储 <----* 06efc364 80 f2 20 04 64 15 00 00 - 94 c3 ef 06 9c c3 ef 06 .. .d........... 06efc374 00 00 00 00 00 c4 ef 06 - 18 bb 0c 00 40 f5 0e 00 ............@... 06efc384 00 00 00 00 01 00 00 00 - 00 00 07 00 5b 01 00 00 ............[... 06efc394 00 00 00 00 00 00 00 00 - 00 00 00 00 00 6f ac 75 .............o.u 06efc3a4 64 15 00 00 00 00 00 00 - 08 c4 ef 06 23 f9 5b 76 d...........#.[v 06efc3b4 8b 86 1e 04 51 0e 00 00 - 00 c4 ef 06 00 00 00 00 ....Q........... 06efc3c4 00 c4 ef 06 00 00 00 00 - 29 dd 59 76 18 bb 0c 00 ........).Yv.... 06efc3d4 8b 86 1e 04 51 0e 00 00 - 00 c4 ef 06 2d 95 59 76 ....Q.......-.Yv 06efc3e4 f8 24 1c 04 8b 86 1e 04 - 51 0e 00 00 00 c4 ef 06 .$......Q....... 06efc3f4 8b 86 1e 04 40 af 59 76 - b8 f3 0e 00 00 00 00 00 ....@.Yv........ 06efc404 01 00 00 00 38 c4 ef 06 - af 94 59 76 40 f5 0e 00 ....8.....Yv@... 06efc414 8b 86 1e 04 51 0e 00 00 - 30 c4 ef 06 48 ae 59 76 ....Q...0...H.Yv 06efc424 8b 86 1e 04 98 0d 8c 02 - e8 f4 0e 00 00 00 00 00 ................ 06efc434 01 00 00 00 64 c4 ef 06 - 6b a4 59 76 00 00 00 00 ....d...k.Yv.... 06efc444 8b 86 1e 04 51 0e 00 00 - 5c c4 ef 06 00 00 00 00 ....Q...\....... 06efc454 20 c9 2a 04 d0 c4 ef 06 - 00 00 00 00 01 00 00 00 .*............. 06efc464 88 c4 ef 06 c9 a3 59 76 - 00 00 00 00 8b 86 1e 04 ......Yv........ 06efc474 51 0e 00 00 84 c4 ef 06 - 00 00 00 00 c0 9d e8 01 Q............... 06efc484 00 00 00 00 ac c4 ef 06 - 75 4a ac 75 20 c9 2a 04 ........uJ.u .*. 06efc494 8b 86 1e 04 51 0e 00 00 - d0 c4 ef 06 00 00 00 00 ....Q........... 发生应用程序意外错误: 应用程序: iexplore.exe (pid=628) 时间: 2003-8-31 @ 22:23:53.546 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 420 svchost.exe 444 spoolsv.exe 472 ccEvtMgr.exe 488 svchost.exe 508 navapsvc.exe 544 regsvc.exe 688 MSTask.exe 716 WinMgmt.exe 792 svchost.exe 1132 Explorer.exe 928 Rundll32.exe 404 daemon.exe 1120 ccApp.exe 1324 RealPlay.exe 980 internat.exe 344 AcroTray.exe 1348 wuauclt.exe 1108 XDICT.exe 1648 RUNDLL32.exe 1332 RUNDLL32.exe 1076 cthighway.exe 1048 conime.exe 1232 cmd.exe 1456 cmd.exe 1096 cmd.exe 628 iexplore.exe 1484 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFB000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 78761000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B25000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01700000 - 01708000) (01750000 - 01760000) (01870000 - 0188D000) (018A0000 - 018BC000) (018C0000 - 018D9000) (780C0000 - 78121000) (773A0000 - 773B5000) (01920000 - 01928000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (770F0000 - 772ED000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (01C00000 - 01C17000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (02250000 - 0226B000) (02380000 - 0239E000) (768D0000 - 768FB000) (77400000 - 77477000) (773F0000 - 77400000) (77900000 - 77923000) (7CA00000 - 7CA23000) (75D80000 - 75DF7000) (02B80000 - 02D0D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (68EF0000 - 68F0F000) (6AC80000 - 6ACBC000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (6DDA0000 - 6DDAA000) (751C0000 - 751D5000) (72140000 - 7214B000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (64260000 - 64288000) (6B6E0000 - 6B709000) 线程 ID 0x410 的状态转储 eax=00000000 ebx=00000000 ecx=0006db6c edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 05970128 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 fe 00 53 07 02 80 00 00 - 00 00 00 00 00 00 00 00 ..S............. 0006dd68 3b ed 71 45 cb 02 00 00 - 14 02 00 00 00 00 00 00 ;.qE............ 0006dd78 05 00 00 00 18 ac 07 00 - 01 44 00 80 98 52 07 00 .........D...R.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 28 01 97 05 ........|!.v(... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x548 的状态转储 eax=01a2fbdc ebx=77f8377b ecx=77c941a0 edx=00000000 esi=00000000 edi=00000001 eip=77f83786 esp=01a2facc ebp=01a2fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0258d09f=00000000 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A2FB04 74F57EE6 000001F4 000001F8 00000001 00000004 ntdll!NtWaitForSingleObject 01A2FBF0 74FB1DA9 00000001 01A2FE84 01A2FC7C 01A2FD80 msafd!WSPSetSockOpt 01A2FC54 76BD6F2E 00000001 01A2FE84 01A2FC7C 01A2FD80 ws2_32!select 01A2FFB0 76BD6E24 77E687DD 000A0EC8 7FFDC000 00000040 wininet!InternetSetStatusCallbackA 01A2FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 01a2facc 62 bb f5 74 f4 01 00 00 - 01 00 00 00 f0 fa a2 01 b..t............ 01a2fadc 84 fe a2 01 78 fb a2 01 - 68 fb a2 01 01 00 00 00 ....x...h....... 01a2faec cb 6f c3 01 c0 b4 b3 ff - ff ff ff ff 30 1f 0a 00 .o..........0... 01a2fafc 00 00 00 00 00 00 00 00 - f0 fb a2 01 e6 7e f5 74 .............~.t 01a2fb0c f4 01 00 00 f8 01 00 00 - 01 00 00 00 04 00 00 00 ................ 01a2fb1c 80 fd a2 01 e0 18 09 00 - 7c fc a2 01 00 00 00 00 ........|....... 01a2fb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff 30 1f 0a 00 ............0... 01a2fb3c f4 01 00 00 00 00 00 00 - e8 fb a2 01 01 00 00 00 ................ 01a2fb4c 00 00 00 00 a0 00 00 00 - 03 01 00 00 00 00 00 00 ................ 01a2fb5c 00 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 01a2fb6c ff ff ff ff 01 00 00 00 - 00 fb a2 01 f8 01 00 00 ................ 01a2fb7c 19 00 00 00 c0 11 f5 74 - ff ff ff ff c4 fb a2 01 .......t........ 01a2fb8c 65 12 fb 74 88 06 00 00 - e8 fb a2 01 01 00 00 00 e..t............ 01a2fb9c 00 fc a2 01 fc fb a2 01 - 00 00 00 00 c4 fb a2 01 ................ 01a2fbac 30 1f 0a 00 33 27 00 00 - 00 00 00 00 68 fb a2 01 0...3'......h... 01a2fbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 01a2fbcc 88 06 00 00 e8 fb a2 01 - 84 fb a2 01 1c fb a2 01 ................ 01a2fbdc 24 fc a2 01 44 fc a2 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 01a2fbec ff ff ff ff 54 fc a2 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 01a2fbfc 84 fe a2 01 7c fc a2 01 - 80 fd a2 01 90 ff a2 01 ....|........... 线程 ID 0x644 的状态转储 eax=00000000 ebx=00000004 ecx=00000010 edx=00000000 esi=77f837a7 edi=00000004 eip=77f837b2 esp=01abfd24 ebp=01abfd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0261d2f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01ABFD70 77E6A31D 01ABFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 01ABFFB4 77E687DD 00000005 000A27B4 7FFDA000 000A4818 kernel32!WaitForMultipleObjects 01ABFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x54c 的状态转储 eax=02a7f070 ebx=80020000 ecx=02a4de28 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=01affe28 ebp=01afff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0265d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AFFF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 01AFFFA8 787024DA 0007C0F8 01AFFFEC 77E687DD 000ABFC8 rpcrt4!NdrConformantArrayMemorySize 01AFFFB4 77E687DD 000ABFC8 00000000 00000000 000ABFC8 rpcrt4!NdrConformantArrayMemorySize 01AFFFEC 00000000 787024C2 000ABFC8 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01affe28 85 22 70 78 04 01 00 00 - 54 ff af 01 00 00 00 00 ."px....T....... 01affe38 08 02 0b 00 58 ff af 01 - 80 c0 07 00 a8 b4 0a 00 ....X........... 01affe48 6d 31 f8 77 00 00 00 00 - 00 00 00 00 00 00 00 00 m1.w............ 01affe58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affe68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affe78 00 00 00 00 00 00 00 00 - 00 00 00 00 05 19 00 00 ................ 01affe88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affe98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affea8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affeb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affec8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01affef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01afff08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01afff18 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01afff28 00 00 00 00 80 83 1e 81 - a0 1d 16 81 00 00 00 00 ................ 01afff38 a0 1d 16 81 30 1f 16 81 - 64 ec 70 bc f3 da 42 80 ....0...d.p...B. 01afff48 a4 da 42 80 d4 4b 06 80 - 00 1f 16 81 00 00 02 80 ..B..K.......... 01afff58 00 a2 2f 4d ff ff ff ff - 50 fe af 01 00 00 02 80 ../M....P....... 线程 ID 0x3cc 的状态转储 eax=00000000 ebx=00000102 ecx=0007c880 edx=00000000 esi=77f8318c edi=01b4ff74 eip=77f83197 esp=01b4ff60 ebp=01b4ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f8318c b832000000 mov eax,0x32 77f83191 8d542404 lea edx,[esp+0x4] ss:026ad533=???????? 77f83195 cd2e int 2e 77f83197 c20800 ret 0x8 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01B4FF7C 77E675EB 0000EA60 00000000 77A64D37 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 01b4ff60 17 76 e6 77 00 00 00 00 - 74 ff b4 01 b5 77 e6 77 .v.w....t....w.w 01b4ff70 70 d6 0a 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 p.....<.....0u.. 01b4ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 37 4d a6 77 .u.w`.......7M.w 01b4ff90 60 ea 00 00 4c d5 a7 77 - 00 00 00 00 00 00 a3 77 `...L..w.......w 01b4ffa0 70 d6 0a 00 ec ff b4 01 - 70 d6 0a 00 0b d5 a7 77 p.......p......w 01b4ffb0 63 00 65 00 5c 00 7b 00 - dd 87 e6 77 70 d6 0a 00 c.e.\.{....wp... 01b4ffc0 63 00 65 00 5c 00 7b 00 - 70 d6 0a 00 00 70 fd 7f c.e.\.{.p....p.. 01b4ffd0 36 00 39 00 c0 ff b4 01 - 36 00 39 00 ff ff ff ff 6.9.....6.9..... 01b4ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 01b4fff0 00 00 00 00 f1 d4 a7 77 - 70 d6 0a 00 00 00 00 00 .......wp....... 01b50000 01 00 00 00 24 00 00 00 - 0b de 00 00 da 71 02 00 ....$........q.. 01b50010 01 00 00 00 01 00 00 00 - da 71 02 00 00 00 00 00 .........q...... 01b50020 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b50030 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b50040 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b50050 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b50060 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b50070 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b50080 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b50090 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x2d4 的状态转储 eax=00000000 ebx=80020000 ecx=80020000 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=01bbfe28 ebp=01bbff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0271d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01BBFF74 787020D9 787025B9 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 01BBFFA8 787024DA 0007C0F8 01BBFFEC 77E687DD 000AECF8 rpcrt4!NdrConformantArrayMemorySize 01BBFFB4 77E687DD 000AECF8 00000000 00000000 000AECF8 rpcrt4!NdrConformantArrayMemorySize 01BBFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x69c 的状态转储 eax=02b1e580 ebx=000ba900 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f837dc esp=01bfff84 ebp=01bfffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwRemoveIoCompletion 77f837d1 b8a8000000 mov eax,0xa8 77f837d6 8d542404 lea edx,[esp+0x4] ss:0275d557=???????? 77f837da cd2e int 2e 77f837dc c21400 ret 0x14 77f837df 53 push ebx 77f837e0 f7e1 mul ecx 77f837e2 8bd8 mov ebx,eax 77f837e4 8b442408 mov eax,[esp+0x8] ss:0275d557=???????? 77f837e8 f7642414 mul dword ptr [esp+0x14] ss:0275d557=???????? 77f837ec 03d8 add ebx,eax 77f837ee 8b442408 mov eax,[esp+0x8] ss:0275d557=???????? 77f837f2 f7e1 mul ecx 77f837f4 03d3 add edx,ebx 77f837f6 5b pop ebx 77f837f7 c21000 ret 0x10 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01BFFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000BA900 ntdll!ZwRemoveIoCompletion 01BFFFEC 00000000 74F54766 000BA900 00000000 00905A4D kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01bfff84 b8 47 f5 74 b4 02 00 00 - bc ff bf 01 b0 ff bf 01 .G.t............ 01bfff94 a4 ff bf 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01bfffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 90 17 ac 02 ...........t.... 01bfffb4 ec ff bf 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01bfffc4 00 00 00 00 00 a9 0b 00 - 00 50 fd 7f 34 00 00 00 .........P..4... 01bfffd4 c0 ff bf 01 34 00 00 00 - ff ff ff ff 56 18 e8 77 ....4.......V..w 01bfffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01bffff4 66 47 f5 74 00 a9 0b 00 - 00 00 00 00 4d 5a 90 00 fG.t........MZ.. 01c00004 03 00 00 00 04 00 00 00 - ff ff 00 00 b8 00 00 00 ................ 01c00014 00 00 00 00 40 00 00 00 - 00 00 00 00 00 00 00 00 ....@........... 01c00024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01c00034 00 00 00 00 00 00 00 00 - d0 00 00 00 0e 1f ba 0e ................ 01c00044 00 b4 09 cd 21 b8 01 4c - cd 21 54 68 69 73 20 70 ....!..L.!This p 01c00054 72 6f 67 72 61 6d 20 63 - 61 6e 6e 6f 74 20 62 65 rogram cannot be 01c00064 20 72 75 6e 20 69 6e 20 - 44 4f 53 20 6d 6f 64 65 run in DOS mode 01c00074 2e 0d 0d 0a 24 00 00 00 - 00 00 00 00 7b 93 be 69 ....$.......{..i 01c00084 3f f2 d0 3a 3f f2 d0 3a - 3f f2 d0 3a 69 ed c3 3a ?..:?..:?..:i..: 01c00094 33 f2 d0 3a 3f f2 d1 3a - 41 f2 d0 3a 55 ee d2 3a 3..:?..:A..:U..: 01c000a4 26 f2 d0 3a 66 d1 c3 3a - 28 f2 d0 3a 15 fa d6 3a &..:f..:(..:...: 01c000b4 3e f2 d0 3a 3f f2 d0 3a - 24 f2 d0 3a 52 69 63 68 >..:?..:$..:Rich 线程 ID 0x108 的状态转储 eax=75d2ad60 ebx=0208ff74 ecx=0208ffdc edx=00000000 esi=77f8377b edi=00000314 eip=77f83786 esp=0208ff58 ebp=0208ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:02bed52b=8b0e74ff 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0208FF7C 77E67837 00000314 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 0208ff58 0f 78 e6 77 14 03 00 00 - 00 00 00 00 74 ff 08 02 .x.w........t... 0208ff68 00 00 00 00 e0 1e c3 01 - 3c 31 f8 77 00 44 5f 9a ........<1.w.D_. 0208ff78 fe ff ff ff 6d 31 f8 77 - 37 78 e6 77 14 03 00 00 ....m1.w7x.w.... 0208ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 14 03 00 00 .'......k..u.... 0208ff98 c0 27 09 00 88 b0 06 00 - e0 1e c3 01 ec ff 08 02 .'.............. 0208ffa8 e0 1e c3 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 0208ffb8 dd 87 e6 77 e0 1e c3 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 0208ffc8 e0 1e c3 01 00 40 fd 7f - 88 0a 00 00 c0 ff 08 02 .....@.......... 0208ffd8 88 0a 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 0208ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 0208fff8 e0 1e c3 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ........LCDT.... 02090008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 02090018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 02090028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 02090038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 02090048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 02090058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 02090068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 02090078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02090088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x6dc 的状态转储 eax=000000c0 ebx=0000003f ecx=0266ef50 edx=00000000 esi=0266ec00 edi=00000001 eip=77f837b2 esp=0266ebe8 ebp=0266ffb4 iopl=0 nv up ei pl zr ac po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000256 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:031cc1bb=1d2c8800 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0266FFB4 77E687DD 0006C16C 00000000 00000000 0006C16C ntdll!NtWaitForMultipleObjects 0266FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0266ebe8 a4 c3 f8 77 0f 00 00 00 - 18 ec 66 02 01 00 00 00 ...w......f..... 0266ebf8 01 00 00 00 00 00 00 00 - 68 f3 fc 77 68 f3 fc 77 ........h..wh..w 0266ec08 7c 03 00 00 dc 06 00 00 - 0f 00 00 00 0f 00 00 00 |............... 0266ec18 80 03 00 00 50 03 00 00 - cc 03 00 00 dc 03 00 00 ....P........... 0266ec28 f0 03 00 00 10 04 00 00 - 20 04 00 00 34 04 00 00 ........ ...4... 0266ec38 50 04 00 00 68 04 00 00 - 78 04 00 00 8c 04 00 00 P...h...x....... 0266ec48 a0 04 00 00 b8 04 00 00 - c8 04 00 00 00 00 00 00 ................ 0266ec58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ec68 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ec78 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ec88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ec98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266eca8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ecb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ecc8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ecd8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ece8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ecf8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ed08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0266ed18 00 00 00 00 18 ee 0e 00 - 90 f0 11 00 90 f1 11 00 ................ 线程 ID 0x450 的状态转储 eax=77bfeba0 ebx=00000003 ecx=00000000 edx=00000000 esi=77f837a7 edi=00000003 eip=77f837b2 esp=026aff20 ebp=026aff6c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0320d4f3=6d000a00 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 026AFF6C 77E6A31D 026AFF44 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForMultipleObjects 线程 ID 0x68c 的状态转储 eax=026effdc ebx=026eff74 ecx=77b15380 edx=00000000 esi=77f8377b edi=000004e0 eip=77f83786 esp=026eff58 ebp=026eff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:0324d52b=00000300 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 026EFF7C 77E67837 000004E0 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F8316D 4AFFC033 E0850F08 89000005 FF900C42 8D0F044A kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x43c 的状态转储 eax=77522bda ebx=00000002 ecx=00000045 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=02ddff24 ebp=02ddff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:0393d4f7=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02DDFF70 77E6A31D 02DDFF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 02DDFFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 02DDFFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02ddff24 b7 7a e6 77 02 00 00 00 - 48 ff dd 02 01 00 00 00 .z.w....H....... 02ddff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 02ddff44 00 00 00 00 98 05 00 00 - 94 05 00 00 c0 ea 1a 81 ................ 02ddff54 60 e9 1a 81 00 00 00 00 - 00 00 00 00 00 00 00 00 `............... 02ddff64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff dd 02 ................ 02ddff74 1d a3 e6 77 48 ff dd 02 - 01 00 00 00 00 00 00 00 ...wH........... 02ddff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 02ddff94 a4 ff dd 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 02ddffa4 98 05 00 00 94 05 00 00 - 00 00 00 00 00 00 00 00 ................ 02ddffb4 ec ff dd 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 02ddffc4 00 00 00 00 00 00 00 00 - 00 b0 f9 7f 45 00 00 00 ............E... 02ddffd4 c0 ff dd 02 45 00 00 00 - ff ff ff ff 56 18 e8 77 ....E.......V..w 02ddffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02ddfff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02de0004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02de0014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02de0024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02de0034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02de0044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02de0054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x400 的状态转储 eax=01cbe230 ebx=0345ff70 ecx=7ff9a000 edx=00000000 esi=77f8377b edi=00000318 eip=77f83786 esp=0345ff54 ebp=0345ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:03fbd527=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0345FF78 77E67837 00000318 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 0345ff54 0f 78 e6 77 18 03 00 00 - 00 00 00 00 70 ff 45 03 .x.w........p.E. 0345ff64 2c fc e4 01 00 e1 cb 01 - 3b ed 71 45 f0 d8 ff ff ,.......;.qE.... 0345ff74 ff ff ff ff 01 00 00 00 - 37 78 e6 77 18 03 00 00 ........7x.w.... 0345ff84 01 00 00 00 00 00 00 00 - 04 a1 bd 75 18 03 00 00 ...........u.... 0345ff94 01 00 00 00 00 e1 cb 01 - ec ff 45 03 5d 28 df 77 ..........E.](.w 0345ffa4 00 e1 cb 01 00 00 00 00 - 9a f4 b2 75 82 01 23 01 ...........u..#. 0345ffb4 74 f4 b2 75 dd 87 e6 77 - 00 e1 cb 01 5d 28 df 77 t..u...w....](.w 0345ffc4 82 01 23 01 00 e1 cb 01 - 00 a0 f9 7f 82 01 23 01 ..#...........#. 0345ffd4 c0 ff 45 03 82 01 23 01 - ff ff ff ff 56 18 e8 77 ..E...#.....V..w 0345ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0345fff4 6b f4 b2 75 00 e1 cb 01 - 00 00 00 00 00 00 00 00 k..u............ 03460004 9e 12 33 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ..3............. 03460014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 03460024 ff ff ff 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03460034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 03460044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 03460054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03460064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 03460074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03460084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x140 的状态转储 eax=7ffd1004 ebx=00000670 ecx=0390f8dc edx=00000000 esi=0390ff98 edi=77df7c12 eip=77df1d6b esp=0390ff58 ebp=0390ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0446d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0446d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0446d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0390FF78 77535C36 0390FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0390FFB4 77E687DD 00000670 77555428 000691BC 00000670 winmm!midiOutGetNumDevs 0390FFEC 00000000 77535BB9 00000670 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0390ff58 4e 7c df 77 98 ff 90 03 - 00 00 00 00 00 00 00 00 N|.w............ 0390ff68 00 00 00 00 70 06 00 00 - 00 00 00 00 12 7c df 77 ....p........|.w 0390ff78 b4 ff 90 03 36 5c 53 77 - 98 ff 90 03 00 00 00 00 ....6\Sw........ 0390ff88 00 00 00 00 00 00 00 00 - 28 54 55 77 bc 91 06 00 ........(TUw.... 0390ff98 94 02 4b 01 bc 03 00 00 - 54 33 c0 03 00 00 00 00 ..K.....T3...... 0390ffa8 e3 de 71 45 8a 01 00 00 - 65 01 00 00 ec ff 90 03 ..qE....e....... 0390ffb8 dd 87 e6 77 70 06 00 00 - 28 54 55 77 bc 91 06 00 ...wp...(TUw.... 0390ffc8 70 06 00 00 00 c0 fd 7f - 00 00 53 77 c0 ff 90 03 p.........Sw.... 0390ffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 0390ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 0390fff8 70 06 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 p............... 03910008 05 00 00 00 27 00 00 00 - 00 00 00 00 c7 02 00 00 ....'........... 03910018 49 03 00 00 c5 00 00 00 - 02 00 00 00 00 00 00 00 I............... 03910028 30 0e 91 03 30 00 91 03 - 00 00 00 00 00 00 00 00 0...0........... 03910038 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03910048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03910058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03910068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03910078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03910088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x5f4 的状态转储 eax=00000120 ebx=00000002 ecx=000a0d38 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0399fe5c ebp=0399fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:044fd42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0399FEA8 77DF2A00 0399FE80 00000001 00000000 0399FEA0 ntdll!NtWaitForMultipleObjects 0399FF04 77DF2A77 0399FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0399FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0399FF74 77C58FFD 0399FFA0 0399FFA4 0399FFA8 0399FF9C shlwapi!Ordinal271 0399FFAC 77C58F85 76BD1253 77E687DD 00000000 0208CFD8 shlwapi!Ordinal394 0399FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x204 的状态转储 eax=00000001 ebx=00000000 ecx=01c681f0 edx=00000000 esi=02a76150 edi=00000000 eip=77df2268 esp=04c6ee64 ebp=04c6eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:057cc437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04C6EEA8 76DF217C 00BD027A 04C6FFA4 03B71C00 00000000 user32!WaitMessage 04C6EF30 76DF1F65 03B71C00 00070718 00000000 03B71C00 browseui!Ordinal102 04C6FFAC 76C66950 03B71C00 77E687DD 03B71C00 00070718 browseui!Ordinal102 04C6FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 04c6ee64 92 23 df 76 a4 ff c6 04 - 00 1c b7 03 00 00 00 00 .#.v............ 04c6ee74 42 06 0d 02 0f 00 00 00 - 00 00 00 00 00 00 00 00 B............... 04c6ee84 3b ed 71 45 cb 02 00 00 - 14 02 00 00 98 52 07 00 ;.qE.........R.. 04c6ee94 01 00 00 00 50 61 a7 02 - 01 44 00 80 a0 f7 a6 02 ....Pa...D...... 04c6eea4 00 00 00 00 30 ef c6 04 - 7c 21 df 76 7a 02 bd 00 ....0...|!.vz... 04c6eeb4 a4 ff c6 04 00 1c b7 03 - 00 00 00 00 00 00 00 00 ................ 04c6eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 04c6eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 04c6eee4 f4 ee c6 04 a4 ff c6 04 - 00 00 00 00 00 00 00 00 ................ 04c6eef4 00 00 00 00 00 00 00 00 - 20 ef c6 04 37 78 e6 77 ........ ...7x.w 04c6ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 04c6ef14 ff 02 fa 77 b4 ee c6 04 - 78 dd 06 00 dc ff c6 04 ...w....x....... 04c6ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff c6 04 Rz.vxi.v........ 04c6ef34 65 1f df 76 00 1c b7 03 - 18 07 07 00 00 00 00 00 e..v............ 04c6ef44 00 1c b7 03 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04c6ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04c6ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04c6ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04c6ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04c6ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x6a8 的状态转储 eax=02a7ed98 ebx=00000000 ecx=054aee28 edx=00000000 esi=00127cc0 edi=00000000 eip=77df2268 esp=054aee64 ebp=054aeea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0600c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 054AEEA8 76DF217C 01E605EA 054AFFA4 03C3EAC0 00000000 user32!WaitMessage 054AEF30 76DF1F65 03C3EAC0 00070718 00000000 03C3EAC0 browseui!Ordinal102 054AFFAC 76C66950 03C3EAC0 77E687DD 03C3EAC0 00070718 browseui!Ordinal102 054AFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 054aee64 92 23 df 76 a4 ff 4a 05 - c0 ea c3 03 00 00 00 00 .#.v..J......... 054aee74 ee 05 5f 02 0f 00 00 00 - 00 00 00 00 00 00 00 00 .._............. 054aee84 3b ed 71 45 cb 02 00 00 - 14 02 00 00 98 52 07 00 ;.qE.........R.. 054aee94 01 00 00 00 c0 7c 12 00 - 01 44 00 80 f0 7f ae 02 .....|...D...... 054aeea4 00 00 00 00 30 ef 4a 05 - 7c 21 df 76 ea 05 e6 01 ....0.J.|!.v.... 054aeeb4 a4 ff 4a 05 c0 ea c3 03 - 00 00 00 00 00 00 00 00 ..J............. 054aeec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 054aeed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 054aeee4 f4 ee 4a 05 a4 ff 4a 05 - 00 00 00 00 00 00 00 00 ..J...J......... 054aeef4 00 00 00 00 00 00 00 00 - 20 ef 4a 05 37 78 e6 77 ........ .J.7x.w 054aef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 054aef14 ff 02 fa 77 b4 ee 4a 05 - 78 dd 06 00 dc ff 4a 05 ...w..J.x.....J. 054aef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 4a 05 Rz.vxi.v......J. 054aef34 65 1f df 76 c0 ea c3 03 - 18 07 07 00 00 00 00 00 e..v............ 054aef44 c0 ea c3 03 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 054aef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 054aef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 054aef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 054aef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 054aef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x4e8 的状态转储 eax=78700ca8 ebx=80020000 ecx=001322d8 edx=00000000 esi=0007e288 edi=00000100 eip=77f83bb8 esp=0691fe28 ebp=0691ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtReplyWaitReceivePortEx 77f83bad b8ac000000 mov eax,0xac 77f83bb2 8d542404 lea edx,[esp+0x4] ss:0747d3fb=???????? 77f83bb6 cd2e int 2e 77f83bb8 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0691FF74 787020D9 78702528 0007E288 00000000 00000000 ntdll!NtReplyWaitReceivePortEx 0691FFA8 787024DA 02A67438 0691FFEC 77E687DD 03C63AB0 rpcrt4!NdrConformantArrayMemorySize 0691FFB4 77E687DD 03C63AB0 00000000 00000000 03C63AB0 rpcrt4!NdrConformantArrayMemorySize 0691FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x6a0 的状态转储 eax=00002736 ebx=00000002 ecx=0742fec0 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0742fe5c ebp=0742fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:07f8d42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0742FEA8 77DF2A00 0742FE80 00000001 00000000 0742FEA0 ntdll!NtWaitForMultipleObjects 0742FF04 77DF2A77 0742FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0742FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0742FF74 77C58FFD 0742FFA0 0742FFA4 0742FFA8 0742FF9C shlwapi!Ordinal271 0742FFAC 77C58F85 76BD1253 77E687DD 00000000 0208CFD8 shlwapi!Ordinal394 0742FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x65c 的状态转储 eax=76bc3fe8 ebx=00000002 ecx=00087ab8 edx=00000000 esi=77f837a7 edi=00000002 eip=77f837b2 esp=0746fe5c ebp=0746fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f837a7 b8e9000000 mov eax,0xe9 77f837ac 8d542404 lea edx,[esp+0x4] ss:07fcd42f=???????? 77f837b0 cd2e int 2e 77f837b2 c21400 ret 0x14 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0746FEA8 77DF2A00 0746FE80 00000001 00000000 0746FEA0 ntdll!NtWaitForMultipleObjects 0746FF04 77DF2A77 0746FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0746FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0746FF74 77C58FFD 0746FFA0 0746FFA4 0746FFA8 0746FF9C shlwapi!Ordinal271 0746FFAC 77C58F85 77F82B95 77E687DD 00000000 01A2FA10 shlwapi!Ordinal394 0746FFEC 00000000 77C58F5C 00000000 00000000 03030303 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0746fe5c b7 7a e6 77 02 00 00 00 - 80 fe 46 07 01 00 00 00 .z.w......F..... 0746fe6c 00 00 00 00 a0 fe 46 07 - 00 00 00 00 00 00 00 00 ......F......... 0746fe7c 02 00 00 00 e8 01 00 00 - 30 07 00 00 00 00 07 00 ........0....... 0746fe8c 00 00 00 00 b8 87 11 00 - 78 f2 4d 06 08 f1 4d 06 ........x.M...M. 0746fe9c 00 00 00 00 00 ba 3c dc - ff ff ff ff 04 ff 46 07 ......<.......F. 0746feac 00 2a df 77 80 fe 46 07 - 01 00 00 00 00 00 00 00 .*.w..F......... 0746febc a0 fe 46 07 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ..F.....`....A.w 0746fecc 00 00 00 00 e8 01 00 00 - 30 07 00 00 95 2b f8 77 ........0....+.w 0746fedc 18 36 f8 77 ff ff ff ff - 2c ff 46 07 82 73 e6 77 .6.w....,.F..s.w 0746feec 00 00 07 00 00 00 00 00 - 00 00 00 00 cc a6 fd 7f ................ 0746fefc 00 00 00 00 30 07 00 00 - 20 ff 46 07 77 2a df 77 ....0... .F.w*.w 0746ff0c d0 fe 46 07 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 ..F..A.w`...A... 0746ff1c 00 00 00 00 74 ff 46 07 - ff 64 c5 77 01 00 00 00 ....t.F..d.w.... 0746ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0746ff3c 00 00 00 00 a0 41 c9 77 - 6d 31 f8 77 a1 96 bc 76 .....A.wm1.w...v 0746ff4c 50 f1 4d 06 c0 9f 45 06 - 00 00 00 00 82 96 bc 76 P.M...E........v 0746ff5c 00 00 00 00 b4 d0 bc 76 - f0 e1 71 45 a0 41 c9 77 .......v..qE.A.w 0746ff6c 60 ea 00 00 01 00 00 00 - ac ff 46 07 fd 8f c5 77 `.........F....w 0746ff7c a0 ff 46 07 a4 ff 46 07 - a8 ff 46 07 9c ff 46 07 ..F...F...F...F. 0746ff8c 60 ea 00 00 10 fa a2 01 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x5b4 的状态转储 eax=65d2e306 ebx=77e68277 ecx=65d2e325 edx=fffff000 esi=00001000 edi=37f06288 eip=77e682cc esp=07b0d154 ebp=07b0d184 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00010246 函数: IsBadReadPtr 77e682aa 8b4d0c mov ecx,[ebp+0xc] ss:0866a756=???????? 77e682ad 85c9 test ecx,ecx 77e682af 7434 jz GetNlsSectionName+0x9f (77e70de5) 77e682b1 8b4508 mov eax,[ebp+0x8] ss:0866a756=???????? 77e682b4 85c0 test eax,eax 77e682b6 0f8407bc0000 je GetShortPathNameA+0x255 (77e73ec3) 77e682bc 8d4c01ff lea ecx,[ecx+eax+0xff] ds:6688b8d9=???????? 77e682c0 3bc8 cmp ecx,eax 77e682c2 0f82fbbb0000 jb GetShortPathNameA+0x255 (77e73ec3) 77e682c8 8365fc00 and dword ptr [ebp+0xfc],0x0 ss:0866a756=???????? 错误 ->77e682cc 8a10 mov dl,[eax] ds:65d2e306=?? 77e682ce 8d56ff lea edx,[esi+0xff] ds:00b5e5d2=???????? 77e682d1 f7d2 not edx 77e682d3 23c2 and eax,edx 77e682d5 8945e0 mov [ebp+0xe0],eax ss:0866a756=???????? 77e682d8 23ca and ecx,edx 77e682da 894de4 mov [ebp+0xe4],ecx ss:0866a756=???????? 77e682dd 3bc1 cmp eax,ecx 77e682df 756a jnz GetComputerNameW+0xb1 (77e7064b) 77e682e1 834dfcff or dword ptr [ebp+0xfc],0xff ss:0866a756=???????? 77e682e5 33c0 xor eax,eax 77e682e7 8b4df0 mov ecx,[ebp+0xf0] ss:0866a756=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 07B0D184 37F01AC7 65D2E306 00000020 00000002 01E014B0 kernel32!IsBadReadPtr 07B0D1C0 37F01154 37F06288 37F02D18 00000002 01E014B0 !xeGetLastBouns 07B0D264 75ADB6D8 B001048E 0000000E 00000410 00000004 ! 07B0D7F8 75ADB3D4 07B0D2A4 B001048E 0000000E 00000410 mshtml! 07B0D8A0 75B0B342 01DDB9A0 00000000 00000000 07B0D938 mshtml! 07B0D8E0 75A688BD 01DFAD90 01DDB9A0 00000000 00000000 mshtml! 07B0D96C 75A68734 01E01240 07B0D988 07B0DCF0 07B0EB64 msls31!LsPointXYFromPointUV 07B0D9D8 75B0B2F0 01DFFCB8 07B0DAAC 00000001 07B0DCE0 msls31!LsDisplayLine 07B0DAC8 75C04707 01E89EB0 00000007 00000000 01E89EE0 mshtml! 07B0DB28 75C04578 00000010 00000000 01DDB9A0 07B0DBCC mshtml! 07B0DB40 75C03AA3 01E75DB0 06523CA8 00000030 01E136A0 mshtml! 07B0DBB0 75AA126D 06523CA8 03CB6228 01E13670 07B0EAE8 mshtml! 07B0DD74 75AA107E 00000079 07B0EB44 00000408 00000000 mshtml! 07B0DDB4 75AA610B 07B0DE80 07B0DE94 01E9BC00 01E34F40 mshtml! 07B0DEA4 75AA53C4 75AB3918 00000000 01DDF228 0C000000 mshtml! 07B0DEE4 75AA5769 01DDF218 00000000 01DDF218 00000002 mshtml! 07B0DF1C 75AA55C4 00000002 07B0DFE0 07B0DF7C 01DDF218 mshtml! 07B0DFF0 75AA545C 00000000 01E34F40 00000000 75AA53C4 mshtml! 07B0E040 75AA5EFE 01DDF218 00000000 07B0E0B8 00000000 mshtml! 07B0E07C 75AA53C4 01DDF218 01E34EC0 01DDF1C0 01E34EC0 mshtml! 07B0E0BC 75AA994F 01DDF218 01E34EC0 01DDF274 01DDF218 mshtml! 01DDF1C0 DC0021AA 00000000 00000000 00000000 00000000 mshtml! 75AB24D8 75A93A21 75C01C7D 75AA89AF 75B0146E 75A99EB0 75AD77DC 00000013 082444F6 56067401 FBA374E8 5EC68BFF mshtml! *----> 原始堆栈转储 <----* 07b0d154 88 62 f0 37 06 e3 d2 65 - 77 82 e6 77 ac df e7 77 .b.7...ew..w...w 07b0d164 00 60 f0 37 00 60 f0 37 - 54 d1 b0 07 b0 d1 b0 07 .`.7.`.7T....... 07b0d174 b0 d1 b0 07 56 18 e8 77 - f8 82 e6 77 00 00 00 00 ....V..w...w.... 07b0d184 c0 d1 b0 07 c7 1a f0 37 - 06 e3 d2 65 20 00 00 00 .......7...e ... 07b0d194 02 00 00 00 b0 14 e0 01 - 00 00 00 00 14 72 f4 77 .............r.w 07b0d1a4 06 e3 d2 65 20 50 f0 37 - 70 a1 f0 37 54 d2 b0 07 ...e P.7p..7T... 07b0d1b4 20 50 f0 37 70 a1 f0 37 - 00 00 00 00 64 d2 b0 07 P.7p..7....d... 07b0d1c4 54 11 f0 37 88 62 f0 37 - 18 2d f0 37 02 00 00 00 T..7.b.7.-.7.... 07b0d1d4 b0 14 e0 01 00 00 00 00 - 00 00 00 00 24 d2 b0 07 ............$... 07b0d1e4 6c d2 b0 07 74 64 46 06 - 34 d2 b0 07 3c 93 ba 02 l...tdF.4...<... 07b0d1f4 bc 9c e9 02 33 33 00 00 - 00 00 00 00 00 00 00 00 ....33.......... 07b0d204 33 33 00 00 f8 f8 57 06 - f0 00 00 00 bc 9c e9 02 33....W......... 07b0d214 00 00 00 00 e0 01 00 00 - bc 9c e9 02 00 00 00 00 ................ 07b0d224 00 00 00 00 02 00 00 00 - b0 14 e0 01 00 00 00 00 ................ 07b0d234 b0 d6 b0 07 36 0e ea 01 - 64 d2 b0 07 83 33 c0 75 ....6...d....3.u 07b0d244 a8 03 00 00 00 00 00 00 - 36 0e ea 01 b2 d6 b0 07 ........6....... 07b0d254 28 ee b0 07 20 50 f0 37 - a0 a1 f0 37 ff ff ff ff (... P.7...7.... 07b0d264 f8 d7 b0 07 d8 b6 ad 75 - 8e 04 01 b0 0e 00 00 00 .......u........ 07b0d274 10 04 00 00 04 00 00 00 - e0 dc b0 07 b0 d6 b0 07 ................ 07b0d284 01 00 00 00 a4 d2 b0 07 - 01 00 00 00 00 00 00 00 ................ 线程 ID 0x67c 的状态转储 eax=08270000 ebx=00000000 ecx=00001000 edx=bbcd2d64 esi=000006fc edi=081c2a3c eip=77f83786 esp=081c28bc ebp=081c2bc8 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: NtWaitForSingleObject 77f8377b b8ea000000 mov eax,0xea 77f83780 8d542404 lea edx,[esp+0x4] ss:08d1fe8f=???????? 77f83784 cd2e int 2e 77f83786 c20c00 ret 0xc *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 081C2BC8 76E26090 081C2BF0 76E47A9D 081C2BF8 00000000 ntdll!NtWaitForSingleObject 081FEF30 76DF1F65 0647DFA8 00000000 00000000 0647DFA8 browseui!Ordinal107 081FFFAC 76C66950 0647DFA8 77E687DD 0647DFA8 00000000 browseui!Ordinal102 081FFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 081c28bc 46 16 e8 77 fc 06 00 00 - 01 00 00 00 00 00 00 00 F..w............ 081c28cc 18 ef 1f 08 0c 2d 1c 08 - 20 ef 1f 08 00 00 00 00 .....-.. ....... 081c28dc 00 00 00 00 00 00 00 00 - 64 72 77 74 73 6e 33 32 ........drwtsn32 081c28ec 20 2d 70 20 36 32 38 20 - 2d 65 20 31 37 38 38 20 -p 628 -e 1788 081c28fc 2d 67 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 -g.............. 081c290c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c291c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c292c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c293c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c294c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c295c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c296c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c297c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c298c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c299c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c29ac 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c29bc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c29cc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 081c29dc 00 00 00 00 00 00 00 00 - 00 00 00 00 0c 00 00 00 ................ 081c29ec 00 00 00 00 01 00 00 00 - 00 00 00 00 44 00 00 00 ............D... 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1128) 时间: 2003-9-13 @ 17:52:56.609 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 176 winlogon.exe 228 services.exe 240 lsass.exe 404 svchost.exe 436 spoolsv.exe 468 svchost.exe 504 regsvc.exe 520 MSTask.exe 564 WinMgmt.exe 576 svchost.exe 808 Explorer.exe 928 Rundll32.exe 816 daemon.exe 940 RealPlay.exe 972 internat.exe 920 AcroTray.exe 1044 XDICT.exe 1128 iexplore.exe 1172 wuauclt.exe 880 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (75D80000 - 75DF7000) (75A60000 - 75A88000) (020E0000 - 0226D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A40000 - 75A48000) (72750000 - 72759000) (72760000 - 727A6000) (72800000 - 72806000) (68EF0000 - 68F0F000) (75CE0000 - 75CE6000) (751C0000 - 751D5000) (6DDA0000 - 6DDAA000) 线程 ID 0x144 的状态转储 eax=00000000 ebx=00000000 ecx=01010101 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 000300FE 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 ae 00 03 00 02 80 00 00 - 00 00 00 00 00 00 00 00 ................ 0006dd68 9a fe 02 00 f8 02 00 00 - a8 01 00 00 00 00 00 00 ................ 0006dd78 02 00 00 00 18 ac 07 00 - 01 44 00 80 48 51 07 00 .........D..HQ.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 fe 00 03 00 ........|!.v.... 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x118 的状态转储 eax=00000000 ebx=80020000 ecx=0012116c edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 78716D9E 786F9AD0 0007E3A0 4007DEBC 00000070 ntdll!ZwReplyWaitReceivePortEx 00BCFFA8 78701C6C 0007C208 00BCFFEC 77E687DD 0007D050 rpcrt4!TowerConstruct 00BCFFB4 77E687DD 0007D050 4007DEBC 00000070 0007D050 rpcrt4!I_RpcServerInqTransportType 00BCFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x310 的状态转储 eax=00000000 ebx=00000102 ecx=77b0bd40 edx=00000000 esi=77f882f8 edi=00c0ff74 eip=77f88303 esp=00c0ff60 ebp=00c0ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0176d533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00C0FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 00c0ff60 17 76 e6 77 00 00 00 00 - 74 ff c0 00 b5 77 e6 77 .v.w....t....w.w 00c0ff70 98 09 08 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 ......<.....0u.. 00c0ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 00c0ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 00c0ffa0 98 09 08 00 ec ff c0 00 - 98 09 08 00 53 46 a9 77 ............SF.w 00c0ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 98 09 08 00 .z.w.z.w...w.... 00c0ffc0 d8 7a a4 77 c3 7a a4 77 - 98 09 08 00 00 c0 fd 7f .z.w.z.w........ 00c0ffd0 60 d3 07 00 c0 ff c0 00 - 60 d3 07 00 ff ff ff ff `.......`....... 00c0ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 00c0fff0 00 00 00 00 39 46 a9 77 - 98 09 08 00 00 00 00 00 ....9F.w........ 00c10000 01 00 00 00 88 d3 07 00 - 01 00 00 00 d0 d3 07 00 ................ 00c10010 01 00 00 00 70 63 09 00 - 01 00 00 00 90 ea 08 00 ....pc.......... 00c10020 01 00 00 00 f8 62 09 00 - 01 00 00 00 08 c8 0a 00 .....b.......... 00c10030 01 00 00 00 f8 1d 13 00 - 40 00 c1 00 00 00 00 00 ........@....... 00c10040 48 00 c1 00 00 00 00 00 - 50 00 c1 00 00 00 00 00 H.......P....... 00c10050 58 00 c1 00 00 00 00 00 - 60 00 c1 00 00 00 00 00 X.......`....... 00c10060 68 00 c1 00 00 00 00 00 - 70 00 c1 00 00 00 00 00 h.......p....... 00c10070 78 00 c1 00 00 00 00 00 - 80 00 c1 00 00 00 00 00 x............... 00c10080 88 00 c1 00 00 00 00 00 - 90 00 c1 00 00 00 00 00 ................ 00c10090 98 00 c1 00 00 00 00 00 - a0 00 c1 00 00 00 00 00 ................ 线程 ID 0x320 的状态转储 eax=eca00548 ebx=77f87e40 ecx=eca00548 edx=000002fa esi=eca00548 edi=eca0054c eip=76bc8e7c esp=0197fc08 ebp=00000000 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: GetUrlCacheEntryInfoExW 76bc8e6c 83c0fc add eax,0xfc 76bc8e6f c20400 ret 0x4 76bc8e72 51 push ecx 76bc8e73 51 push ecx 76bc8e74 53 push ebx 76bc8e75 55 push ebp 76bc8e76 56 push esi 76bc8e77 8bf1 mov esi,ecx 76bc8e79 33ed xor ebp,ebp 76bc8e7b 57 push edi 错误 ->76bc8e7c 837e14ff cmp dword ptr [esi+0x14],0xff ds:ed55db1a=???????? 76bc8e80 896c2414 mov [esp+0x14],ebp ss:024dd1db=???????? 76bc8e84 0f845b3a0100 je GetUrlCacheEntryInfoW+0x222e (76bdc8e5) 76bc8e8a f6461840 test byte ptr [esi+0x18],0x40 ds:ed55db1a=?? 76bc8e8e 6a01 push 0x1 76bc8e90 5b pop ebx 76bc8e91 744a jz GetUrlCacheHeaderData+0xc37 (76bcf8dd) 76bc8e93 6a02 push 0x2 76bc8e95 8d442417 lea eax,[esp+0x17] ss:024dd1db=???????? 76bc8e99 53 push ebx 76bc8e9a 50 push eax 76bc8e9b ff7614 push dword ptr [esi+0x14] ds:ed55db1a=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00000000 00000000 00000000 00000000 00000000 00000000 wininet!GetUrlCacheEntryInfoExW 线程 ID 0x130 的状态转储 eax=0042d7d0 ebx=00000002 ecx=77c941a0 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=019bfe5c ebp=019bfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0251d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019BFEA8 77DF2A00 019BFE80 00000001 00000000 019BFEA0 ntdll!NtWaitForMultipleObjects 019BFF04 77DF2A77 019BFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 019BFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 019BFF74 77C58FFD 019BFFA0 019BFFA4 019BFFA8 019BFF9C shlwapi!Ordinal271 019BFFAC 77C58F85 76BD1253 77E687DD 00000000 00070178 shlwapi!Ordinal394 019BFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x3b8 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffda000 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=019ffd24 ebp=019ffd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0255d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFD70 77E6A31D 019FFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 019FFFB4 77E687DD 00000005 000A5754 7FFDA000 000A5760 kernel32!WaitForMultipleObjects 019FFFEC 00000000 777F21FE 000A5760 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 019ffd24 b7 7a e6 77 04 00 00 00 - 48 fd 9f 01 01 00 00 00 .z.w....H....... 019ffd34 00 00 00 00 00 00 00 00 - 01 00 00 00 60 57 0a 00 ............`W.. 019ffd44 01 00 00 00 4c 02 00 00 - 50 02 00 00 60 02 00 00 ....L...P...`... 019ffd54 08 03 00 00 34 00 00 c0 - d0 67 33 81 00 d8 7a 81 ....4....g3...z. 019ffd64 1c 6c 6f bc 01 f3 40 80 - 80 00 01 00 b4 ff 9f 01 .lo...@......... 019ffd74 1d a3 e6 77 48 fd 9f 01 - 01 00 00 00 00 00 00 00 ...wH........... 019ffd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 019ffd94 b0 fe 9f 01 00 00 00 00 - ff ff ff ff 60 57 0a 00 ............`W.. 019ffda4 00 a0 fd 7f 54 57 0a 00 - ff ff ff ff 20 6b 6f bc ....TW...... ko. 019ffdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 019ffdc4 23 00 00 00 23 00 00 00 - 54 57 0a 00 00 a0 fd 7f #...#...TW...... 019ffdd4 60 57 0a 00 00 a0 fd 7f - 00 a0 fd 7f fe 21 7f 77 `W...........!.w 019ffde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 019ffdf4 fc ff 9f 01 23 00 00 00 - f8 45 8b 81 28 95 89 81 ....#....E..(... 019ffe04 10 46 8b 81 00 00 00 00 - 1f 00 00 00 70 93 89 81 .F..........p... 019ffe14 90 95 89 81 00 00 00 00 - 01 00 00 00 7c 6b 6f bc ............|ko. 019ffe24 bd f4 00 00 b8 21 a4 81 - 00 07 00 00 ae cc 44 80 .....!........D. 019ffe34 bd f4 00 00 b8 21 a4 81 - bd f4 00 00 b8 21 a4 81 .....!.......!.. 019ffe44 01 22 f9 7f d9 05 00 00 - 41 d6 44 80 d9 05 00 00 ."......A.D..... 019ffe54 30 d5 45 81 00 20 f9 7f - fc 07 30 c0 00 00 00 00 0.E.. ....0..... 线程 ID 0x4d8 的状态转储 eax=00000000 ebx=80020000 ecx=7ffd8000 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01a4fe28 ebp=01a4ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:025ad3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A4FF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01A4FFA8 78701C6C 0007C208 01A4FFEC 77E687DD 000A77D8 rpcrt4!TowerConstruct 01A4FFB4 77E687DD 000A77D8 00000000 00000000 000A77D8 rpcrt4!I_RpcServerInqTransportType 01A4FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x48c 的状态转储 eax=74f55f4b ebx=000c8610 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=01abff84 ebp=01abffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:0261d557=???????? 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01ABFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000C8610 ntdll!NtRemoveIoCompletion 01ABFFEC 00000000 74F54766 000C8610 00000000 01AC0054 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01abff84 b8 47 f5 74 18 03 00 00 - bc ff ab 01 b0 ff ab 01 .G.t............ 01abff94 a4 ff ab 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01abffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 08 3f 0f 00 ...........t.?.. 01abffb4 ec ff ab 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01abffc4 00 00 00 00 10 86 0c 00 - 00 70 fd 7f 64 f7 9b 01 .........p..d... 01abffd4 c0 ff ab 01 64 f7 9b 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01abffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01abfff4 66 47 f5 74 10 86 0c 00 - 00 00 00 00 54 00 ac 01 fG.t........T... 01ac0004 00 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01ac0014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01ac0024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ac0034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01ac0044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 00 00 00 ................ 01ac0054 01 0b 00 00 00 00 00 00 - 00 00 00 00 03 00 00 01 ................ 01ac0064 00 03 00 00 01 01 01 01 - 00 00 02 00 06 00 00 00 ................ 01ac0074 00 00 01 02 00 03 00 00 - 00 0b 00 00 00 00 00 00 ................ 01ac0084 00 00 00 00 01 03 00 00 - 03 00 00 21 00 00 00 00 ...........!.... 01ac0094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ac00a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 01ac00b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x490 的状态转储 eax=00000001 ebx=01f1ff74 ecx=00000020 edx=00000000 esi=77f88e68 edi=0000033c eip=77f88e73 esp=01f1ff58 ebp=01f1ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02a7d52b=00000000 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F1FF7C 77E67837 0000033C 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f1ff58 0f 78 e6 77 3c 03 00 00 - 00 00 00 00 74 ff f1 01 .x.w<.......t... 01f1ff68 00 00 00 00 e0 1e ac 01 - 40 7e f8 77 00 44 5f 9a ........@~.w.D_. 01f1ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 3c 03 00 00 .... ..w7x.w<... 01f1ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 3c 03 00 00 .'......k..u<... 01f1ff98 c0 27 09 00 88 b0 06 00 - e0 1e ac 01 ec ff f1 01 .'.............. 01f1ffa8 e0 1e ac 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f1ffb8 dd 87 e6 77 e0 1e ac 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f1ffc8 e0 1e ac 01 00 60 fd 7f - 59 16 00 00 c0 ff f1 01 .....`..Y....... 01f1ffd8 59 16 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 Y.......V..w...w 01f1ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f1fff8 e0 1e ac 01 00 00 00 00 - 0d 00 b6 03 02 00 3f 00 ..............?. 01f20008 3f 00 3f 00 3f 00 81 fe - 00 00 00 00 00 00 00 00 ?.?.?........... 01f20018 00 00 03 80 00 00 01 00 - 02 00 03 00 04 00 05 00 ................ 01f20028 06 00 07 00 08 00 09 00 - 0a 00 0b 00 0c 00 0d 00 ................ 01f20038 0e 00 0f 00 10 00 11 00 - 12 00 13 00 14 00 15 00 ................ 01f20048 16 00 17 00 18 00 19 00 - 1a 00 1b 00 1c 00 1d 00 ................ 01f20058 1e 00 1f 00 20 00 21 00 - 22 00 23 00 24 00 25 00 .... .!.".#.$.%. 01f20068 26 00 27 00 28 00 29 00 - 2a 00 2b 00 2c 00 2d 00 &.'.(.).*.+.,.-. 01f20078 2e 00 2f 00 30 00 31 00 - 32 00 33 00 34 00 35 00 ../.0.1.2.3.4.5. 01f20088 36 00 37 00 38 00 39 00 - 3a 00 3b 00 3c 00 3d 00 6.7.8.9.:.;.<.=. 线程 ID 0x498 的状态转储 eax=000000f8 ebx=0207ff74 ecx=000007b9 edx=00000000 esi=77f88e68 edi=00000364 eip=77f88e73 esp=0207ff58 ebp=0207ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02bdd52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0207FF7C 77E67837 00000364 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x49c 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0233ff24 ebp=0233ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:02e9d4f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0233FF70 77E6A31D 0233FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0233FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0233FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0233ff24 b7 7a e6 77 02 00 00 00 - 48 ff 33 02 01 00 00 00 .z.w....H.3..... 0233ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0233ff44 00 00 00 00 dc 03 00 00 - d8 03 00 00 60 f9 2d 81 ............`.-. 0233ff54 00 f8 2d 81 06 b2 af 75 - 00 20 50 c0 e8 b7 9b 81 ..-....u. P..... 0233ff64 e8 b7 9b 81 00 00 00 00 - 00 00 00 00 b4 ff 33 02 ..............3. 0233ff74 1d a3 e6 77 48 ff 33 02 - 01 00 00 00 00 00 00 00 ...wH.3......... 0233ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0233ff94 a4 ff 33 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..3............. 0233ffa4 dc 03 00 00 d8 03 00 00 - 00 00 00 00 00 00 00 00 ................ 0233ffb4 ec ff 33 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..3....w........ 0233ffc4 00 00 00 00 00 00 00 00 - 00 40 fd 7f 98 25 fb 77 .........@...%.w 0233ffd4 c0 ff 33 02 98 25 fb 77 - ff ff ff ff 56 18 e8 77 ..3..%.w....V..w 0233ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0233fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02340004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02340014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02340024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02340034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02340044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02340054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x41c 的状态转储 eax=00000000 ebx=00000001 ecx=00000052 edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=02bafe60 ebp=02bafeac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0370d433=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02BAFEAC 77DF2A00 02BAFE84 00000001 00000000 02BAFEA4 ntdll!NtWaitForMultipleObjects 02BAFF08 77DF2A77 02BAFED4 00000000 0000EA60 000000FF user32!MsgWaitForMultipleObjectsEx 02BAFF24 76DD9CD1 00000000 00000000 00000000 0000EA60 user32!MsgWaitForMultipleObjects 00090880 00000002 000903D0 00000001 0000041C 00000310 browseui!DllGetClassObject *----> 原始堆栈转储 <----* 02bafe60 b7 7a e6 77 01 00 00 00 - 84 fe ba 02 01 00 00 00 .z.w............ 02bafe70 00 00 00 00 a4 fe ba 02 - 00 00 00 00 00 00 00 00 ................ 02bafe80 01 00 00 00 30 04 00 00 - 00 04 00 00 60 ff ba 02 ....0.......`... 02bafe90 06 04 00 00 88 fe ba 02 - f0 fe ba 02 dc ff ba 02 ................ 02bafea0 38 27 e4 77 00 ba 3c dc - ff ff ff ff 08 ff ba 02 8'.w..<......... 02bafeb0 00 2a df 77 84 fe ba 02 - 01 00 00 00 00 00 00 00 .*.w............ 02bafec0 a4 fe ba 02 00 00 00 00 - 00 04 00 00 08 2f c5 77 ............./.w 02bafed0 06 04 00 00 30 04 00 00 - e0 fe ba 02 30 00 00 00 ....0.......0... 02bafee0 00 00 03 00 01 00 00 00 - fc 1f 00 10 80 7c df 77 .............|.w 02bafef0 00 00 00 00 04 04 00 00 - 00 00 00 00 cc 36 fd 7f .............6.. 02baff00 00 00 00 00 30 04 00 00 - 24 ff ba 02 77 2a df 77 ....0...$...w*.w 02baff10 d4 fe ba 02 00 00 00 00 - 60 ea 00 00 ff 00 00 00 ........`....... 02baff20 00 00 00 00 80 08 09 00 - d1 9c dd 76 00 00 00 00 ...........v.... 02baff30 00 00 00 00 00 00 00 00 - 60 ea 00 00 ff 00 00 00 ........`....... 02baff40 80 08 09 00 00 00 00 00 - ac ff ba 02 20 7f f8 77 ............ ..w 02baff50 01 00 00 00 60 ea 00 00 - fe ff ff ff 00 00 00 00 ....`........... 02baff60 00 00 00 00 04 04 00 00 - 00 00 00 00 00 00 00 00 ................ 02baff70 00 7e 02 00 c8 00 00 00 - a8 00 00 00 96 9b dd 76 .~.............v 02baff80 00 00 00 00 a0 41 c9 77 - 13 90 c5 77 80 08 09 00 .....A.w...w.... 02baff90 6c cf f1 01 00 00 c5 77 - 00 00 00 00 0c 00 00 00 l......w........ 线程 ID 0x4ac 的状态转储 eax=00000000 ebx=02c2ff70 ecx=00010101 edx=00000000 esi=77f88e68 edi=0000047c eip=77f88e73 esp=02c2ff54 ebp=02c2ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:0378d527=00000000 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02C2FF78 77E67837 0000047C 0000000A 00000000 75BDA104 ntdll!NtWaitForSingleObject 0000000A 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 02c2ff54 0f 78 e6 77 7c 04 00 00 - 00 00 00 00 70 ff c2 02 .x.w|.......p... 02c2ff64 c0 d9 b3 01 a0 d8 b3 01 - a9 fe 02 00 60 79 fe ff ............`y.. 02c2ff74 ff ff ff ff 0a 00 00 00 - 37 78 e6 77 7c 04 00 00 ........7x.w|... 02c2ff84 0a 00 00 00 00 00 00 00 - 04 a1 bd 75 7c 04 00 00 ...........u|... 02c2ff94 0a 00 00 00 a0 d8 b3 01 - ec ff c2 02 5d 28 df 77 ............](.w 02c2ffa4 a0 d8 b3 01 00 00 00 00 - 9a f4 b2 75 b0 00 02 00 ...........u.... 02c2ffb4 74 f4 b2 75 dd 87 e6 77 - a0 d8 b3 01 5d 28 df 77 t..u...w....](.w 02c2ffc4 b0 00 02 00 a0 d8 b3 01 - 00 f0 f9 7f b0 00 02 00 ................ 02c2ffd4 c0 ff c2 02 b0 00 02 00 - ff ff ff ff 56 18 e8 77 ............V..w 02c2ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02c2fff4 6b f4 b2 75 a0 d8 b3 01 - 00 00 00 00 c8 00 00 00 k..u............ 02c30004 00 01 00 00 ff ee ff ee - 02 10 00 00 00 00 00 00 ................ 02c30014 00 fe 00 00 00 00 10 00 - 00 20 00 00 00 02 00 00 ......... ...... 02c30024 00 20 00 00 de 03 00 00 - ff ef fd 7f 0d 00 08 06 . .............. 02c30034 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02c30044 98 05 c3 02 0f 00 00 00 - f8 ff ff ff 50 00 c3 02 ............P... 02c30054 50 00 c3 02 40 06 c3 02 - 00 00 00 00 00 00 00 00 P...@........... 02c30064 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02c30074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02c30084 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x354 的状态转储 eax=00000012 ebx=00000444 ecx=043d7030 edx=00000000 esi=0328ff98 edi=77df7c12 eip=77df1d6b esp=0328ff58 ebp=0328ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03ded52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03ded52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03ded52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0328FF78 77535C36 0328FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0328FFB4 77E687DD 00000444 77555428 00069DC0 00000444 winmm!midiOutGetNumDevs 0328FFEC 00000000 77535BB9 00000444 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0328ff58 4e 7c df 77 98 ff 28 03 - 00 00 00 00 00 00 00 00 N|.w..(......... 0328ff68 00 00 00 00 44 04 00 00 - 00 00 00 00 12 7c df 77 ....D........|.w 0328ff78 b4 ff 28 03 36 5c 53 77 - 98 ff 28 03 00 00 00 00 ..(.6\Sw..(..... 0328ff88 00 00 00 00 00 00 00 00 - 28 54 55 77 c0 9d 06 00 ........(TUw.... 0328ff98 a4 01 01 00 bc 03 00 00 - 44 5f a1 02 00 00 00 00 ........D_...... 0328ffa8 77 ef 02 00 df 01 00 00 - d2 01 00 00 ec ff 28 03 w.............(. 0328ffb8 dd 87 e6 77 44 04 00 00 - 28 54 55 77 c0 9d 06 00 ...wD...(TUw.... 0328ffc8 44 04 00 00 00 e0 f9 7f - 00 00 53 77 c0 ff 28 03 D.........Sw..(. 0328ffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 0328ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 0328fff8 44 04 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 D............... 03290008 02 00 00 00 04 00 00 00 - 00 00 00 00 3b 00 00 00 ............;... 03290018 fe 00 00 00 2c 00 00 00 - 01 00 00 00 00 00 00 00 ....,........... 03290028 30 0e 29 03 30 00 29 03 - 00 00 00 00 10 d8 09 00 0.).0.)......... 03290038 e0 21 16 00 00 00 00 00 - 00 00 00 00 00 00 00 00 .!.............. 03290048 00 00 00 00 00 00 00 00 - 08 58 3c 04 00 00 00 00 .........X<..... 03290058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03290068 00 00 00 00 00 00 00 00 - 80 ab 0e 00 00 00 00 00 ................ 03290078 00 00 00 00 00 00 00 00 - 00 00 00 00 f8 94 78 03 ..............x. 03290088 00 a7 78 03 00 00 00 00 - 00 00 00 00 00 00 00 00 ..x............. 线程 ID 0x284 的状态转储 eax=032ffe24 ebx=00000002 ecx=029dd750 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=032ffe5c ebp=032ffea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03e5d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 032FFEA8 77DF2A00 032FFE80 00000001 00000000 032FFEA0 ntdll!NtWaitForMultipleObjects 032FFF04 77DF2A77 032FFED0 77C941C0 0000E010 00000041 user32!MsgWaitForMultipleObjectsEx 032FFF20 77C564FF 00000001 77C941C0 00000000 0000E010 user32!MsgWaitForMultipleObjects 032FFF74 77C58FFD 032FFFA0 032FFFA4 032FFFA8 032FFF9C shlwapi!Ordinal271 032FFFAC 77C58F85 77FB64F4 77E687DD 00000000 0197FA10 shlwapi!Ordinal394 032FFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x2b8 的状态转储 eax=029ebbc8 ebx=00000002 ecx=000eab88 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0333fe5c ebp=0333fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03e9d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0333FEA8 77DF2A00 0333FE80 00000001 00000000 0333FEA0 ntdll!NtWaitForMultipleObjects 0333FF04 77DF2A77 0333FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0333FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0333FF74 77C58FFD 0333FFA0 0333FFA4 0333FFA8 0333FF9C shlwapi!Ordinal271 0333FFAC 77C58F85 76BD1253 77E687DD 00000000 01F1CF6C shlwapi!Ordinal394 0333FFEC 00000000 77C58F5C 00000000 00000000 00070050 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0333fe5c b7 7a e6 77 02 00 00 00 - 80 fe 33 03 01 00 00 00 .z.w......3..... 0333fe6c 00 00 00 00 a0 fe 33 03 - 00 00 00 00 00 00 00 00 ......3......... 0333fe7c 02 00 00 00 24 02 00 00 - 2c 05 00 00 00 95 78 03 ....$...,.....x. 0333fe8c 30 6b a2 02 00 95 78 03 - 78 01 07 00 f8 94 78 03 0k....x.x.....x. 0333fe9c dc fe 33 03 00 ba 3c dc - ff ff ff ff 04 ff 33 03 ..3...<.......3. 0333feac 00 2a df 77 80 fe 33 03 - 01 00 00 00 00 00 00 00 .*.w..3......... 0333febc a0 fe 33 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ..3.....`....A.w 0333fecc 00 00 00 00 24 02 00 00 - 2c 05 00 00 20 ff 33 03 ....$...,... .3. 0333fedc f4 64 fb 77 70 16 f8 77 - ff ff ff ff 30 ff 33 03 .d.wp..w....0.3. 0333feec 82 73 e6 77 00 00 07 00 - 00 00 00 00 cc c6 f9 7f .s.w............ 0333fefc 00 00 00 00 2c 05 00 00 - 20 ff 33 03 77 2a df 77 ....,... .3.w*.w 0333ff0c d0 fe 33 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 ..3..A.w`...A... 0333ff1c 00 00 00 00 74 ff 33 03 - ff 64 c5 77 01 00 00 00 ....t.3..d.w.... 0333ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0333ff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 c4 96 bc 76 .....A.w ..w...v 0333ff4c 01 00 00 00 80 0d a0 02 - 00 00 00 00 82 96 bc 76 ...............v 0333ff5c 00 00 00 00 b4 d0 bc 76 - c7 f9 02 00 a0 41 c9 77 .......v.....A.w 0333ff6c 60 ea 00 00 01 00 00 00 - ac ff 33 03 fd 8f c5 77 `.........3....w 0333ff7c a0 ff 33 03 a4 ff 33 03 - a8 ff 33 03 9c ff 33 03 ..3...3...3...3. 0333ff8c 60 ea 00 00 6c cf f1 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x4a0 的状态转储 eax=00000011 ebx=00000002 ecx=000a4020 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=035ffe5c ebp=035ffea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0415d42f=04000200 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 035FFEA8 77DF2A00 035FFE80 00000001 00000000 035FFEA0 ntdll!NtWaitForMultipleObjects 035FFF04 77DF2A77 035FFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 035FFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 035FFF74 77C58FFD 035FFFA0 035FFFA4 035FFFA8 035FFF9C shlwapi!Ordinal271 035FFFAC 77C58F85 76BD1253 77E687DD 00000000 01F1CF6C shlwapi!Ordinal394 035FFFEC 00000000 77C58F5C 00000000 00000000 01010100 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 035ffe5c b7 7a e6 77 02 00 00 00 - 80 fe 5f 03 01 00 00 00 .z.w......_..... 035ffe6c 00 00 00 00 a0 fe 5f 03 - 00 00 00 00 00 00 00 00 ......_......... 035ffe7c 02 00 00 00 24 02 00 00 - 4c 05 00 00 00 00 00 00 ....$...L....... 035ffe8c 00 00 00 00 90 5e ab 02 - ab 00 bd 76 00 f4 9e 02 .....^.....v.... 035ffe9c 90 6b a7 02 00 ba 3c dc - ff ff ff ff 04 ff 5f 03 .k....<......._. 035ffeac 00 2a df 77 80 fe 5f 03 - 01 00 00 00 00 00 00 00 .*.w.._......... 035ffebc a0 fe 5f 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 .._.....`....A.w 035ffecc 00 00 00 00 24 02 00 00 - 4c 05 00 00 f4 64 fb 77 ....$...L....d.w 035ffedc 70 16 f8 77 30 ff 5f 03 - f0 fd bc 76 e5 03 00 00 p..w0._....v.... 035ffeec ee d0 bc 76 c8 98 9e 02 - 00 00 00 00 cc b6 f9 7f ...v............ 035ffefc 00 00 00 00 4c 05 00 00 - 20 ff 5f 03 77 2a df 77 ....L... ._.w*.w 035fff0c d0 fe 5f 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .._..A.w`...A... 035fff1c 00 00 00 00 74 ff 5f 03 - ff 64 c5 77 01 00 00 00 ....t._..d.w.... 035fff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 035fff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 28 56 a5 02 .....A.w ..w(V.. 035fff4c 08 b2 11 00 28 56 a5 02 - 01 00 00 00 49 d0 bc 76 ....(V......I..v 035fff5c 08 b2 11 00 8c ff 5f 03 - 54 fa 02 00 a0 41 c9 77 ......_.T....A.w 035fff6c 60 ea 00 00 01 00 00 00 - ac ff 5f 03 fd 8f c5 77 `........._....w 035fff7c a0 ff 5f 03 a4 ff 5f 03 - a8 ff 5f 03 9c ff 5f 03 .._..._..._..._. 035fff8c 60 ea 00 00 6c cf f1 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x1a8 的状态转储 eax=00000000 ebx=00443810 ecx=01c64d10 edx=bbe25d64 esi=00005678 edi=00000000 eip=77df2b5f esp=047eecb8 ebp=047eecec iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: MsgWaitForMultipleObjects 77df2b49 2bdf sub ebx,edi 77df2b4b 7754 ja DrawEdge+0x2be (77df56a1) 77df2b4d 2bdf sub ebx,edi 77df2b4f 7754 ja DrawEdge+0x2c2 (77df56a5) 77df2b51 2bdf sub ebx,edi 77df2b53 77b8 ja WINNLSGetIMEHotkey+0xfd7 (77dfe80d) 77df2b55 bc1100008d mov esp,0x8d000011 77df2b5a 54 push esp 77df2b5b 2404 and al,0x4 77df2b5d cd2e int 2e 77df2b5f c21c00 ret 0x1c 77df2b62 55 push ebp 77df2b63 8bec mov ebp,esp 77df2b65 83ec0c sub esp,0xc 77df2b68 8b4508 mov eax,[ebp+0x8] ss:0534c2be=???????? 77df2b6b 8365f800 and dword ptr [ebp+0xf8],0x0 ss:0534c2be=???????? 77df2b6f 8365fc00 and dword ptr [ebp+0xfc],0x0 ss:0534c2be=???????? 77df2b73 ff7010 push dword ptr [eax+0x10] ds:00b5d5d2=???????? 77df2b76 ff700c push dword ptr [eax+0xc] ds:00b5d5d2=???????? 77df2b79 ff7008 push dword ptr [eax+0x8] ds:00b5d5d2=???????? 77df2b7c ff7004 push dword ptr [eax+0x4] ds:00b5d5d2=???????? 77df2b7f ff30 push dword ptr [eax] ds:00000000=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 047EECEC 77DF72F2 00443810 00005678 00000000 00000000 user32!MsgWaitForMultipleObjects 047EED0C 37F018B1 00010196 00005678 00000000 00000000 user32!SendMessageA 047EED60 77DF7075 00070000 00000200 047EEDE4 37F01850 !xeMouseProc 047EED9C 77E11C2C 047EEDD0 047EEDE4 047EEDE0 00000000 user32!RegisterClassExW 047EEDC0 77F91A7F 047EEDD0 0000002C 00070000 00000200 user32!DialogBoxParamW 047EEE20 77DF223E 047EEE74 00000000 00000000 00000000 ntdll!KiUserCallbackDispatcher 047EEE4C 76DF22F2 047EEE74 00000000 00000000 00000000 user32!PeekMessageW 047EEEA8 76DF217C 00120200 047EFFA4 037A43D8 00000000 browseui!Ordinal102 047EEF30 76DF1F65 037A43D8 00070718 00000000 037A43D8 browseui!Ordinal102 047EFFAC 76C66950 037A43D8 77E687DD 037A43D8 00070718 browseui!Ordinal102 047EFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 047eecb8 1a 37 df 77 96 01 01 00 - 78 56 00 00 00 00 00 00 .7.w....xV...... 047eecc8 00 00 00 00 00 00 00 00 - ae 02 00 00 01 00 00 00 ................ 047eecd8 00 00 00 00 78 56 00 00 - e4 ed 7e 04 96 01 01 00 ....xV....~..... 047eece8 08 13 00 00 0c ed 7e 04 - f2 72 df 77 10 38 44 00 ......~..r.w.8D. 047eecf8 78 56 00 00 00 00 00 00 - 00 00 00 00 01 00 00 00 xV.............. 047eed08 00 02 00 00 60 ed 7e 04 - b1 18 f0 37 96 01 01 00 ....`.~....7.... 047eed18 78 56 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 xV.............. 047eed28 00 00 07 00 e4 ed 7e 04 - cd 7c df 77 00 00 00 00 ......~..|.w.... 047eed38 00 02 00 00 e4 ed 7e 04 - 02 01 00 00 74 ee 7e 04 ......~.....t.~. 047eed48 00 00 00 00 00 a0 f9 7f - 00 00 00 00 00 00 00 00 ................ 047eed58 00 00 00 00 6c ed 7e 04 - 9c ed 7e 04 75 70 df 77 ....l.~...~.up.w 047eed68 00 00 07 00 00 02 00 00 - e4 ed 7e 04 50 18 f0 37 ..........~.P..7 047eed78 02 01 00 00 74 ee 7e 04 - 00 00 00 00 78 ed 7e 04 ....t.~.....x.~. 047eed88 e4 ed 7e 04 20 ef 7e 04 - 38 27 e4 77 90 70 df 77 ..~. .~.8'.w.p.w 047eed98 00 00 00 00 c0 ed 7e 04 - 2c 1c e1 77 d0 ed 7e 04 ......~.,..w..~. 047eeda8 e4 ed 7e 04 e0 ed 7e 04 - 00 00 00 00 68 e1 44 00 ..~...~.....h.D. 047eedb8 04 00 00 00 e0 ed 7e 04 - 20 ee 7e 04 7f 1a f9 77 ......~. .~....w 047eedc8 d0 ed 7e 04 2c 00 00 00 - 00 00 07 00 00 02 00 00 ..~.,........... 047eedd8 50 18 f0 37 80 7c df 77 - 03 00 00 00 f8 02 00 00 P..7.|.w........ 047eede8 a8 01 00 00 ee 01 04 00 - 01 00 00 00 00 00 00 00 ................ 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1124) 时间: 2003-9-13 @ 20:28:50.187 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 604 svchost.exe 800 Explorer.exe 832 Rundll32.exe 1044 daemon.exe 1052 RealPlay.exe 1076 internat.exe 1084 AcroTray.exe 884 XDICT.exe 916 wuauclt.exe 1124 iexplore.exe 684 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (74F90000 - 74F97000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (75D80000 - 75DF7000) (75A60000 - 75A88000) (020E0000 - 0226D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (72750000 - 72759000) (51000000 - 51044000) (72800000 - 72806000) (75A40000 - 75A48000) (68EF0000 - 68F0F000) (76DB0000 - 76DC1000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (6AC80000 - 6ACBC000) (73800000 - 73824000) (036C0000 - 036DC000) (036F0000 - 03743000) (751C0000 - 751D5000) (64150000 - 64168000) (76F60000 - 76F6F000) (773A0000 - 773B5000) 线程 ID 0x274 的状态转储 eax=00000000 ebx=00000000 ecx=7ffde000 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 002000FC 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 b8 01 07 00 13 01 00 00 - 64 00 00 00 00 00 00 00 ........d....... 0006dd68 4b c2 72 00 46 01 00 00 - ed 00 00 00 00 00 00 00 K.r.F........... 0006dd78 05 00 00 00 18 ac 07 00 - 01 44 00 80 48 51 07 00 .........D..HQ.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 fc 00 20 00 ........|!.v.. . 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x2f0 的状态转储 eax=00bcfce8 ebx=80020000 ecx=00000000 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 78716D9E 786F9AD0 0007E3A0 4007DEBC 00000070 ntdll!ZwReplyWaitReceivePortEx 00BCFFA8 78701C6C 0007C208 00BCFFEC 77E687DD 0007D050 rpcrt4!TowerConstruct 00BCFFB4 77E687DD 0007D050 4007DEBC 00000070 0007D050 rpcrt4!I_RpcServerInqTransportType 00BCFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x338 的状态转储 eax=00000000 ebx=00000102 ecx=77b0bd40 edx=00000000 esi=77f882f8 edi=00c0ff74 eip=77f88303 esp=00c0ff60 ebp=00c0ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0176d533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00C0FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 00c0ff60 17 76 e6 77 00 00 00 00 - 74 ff c0 00 b5 77 e6 77 .v.w....t....w.w 00c0ff70 98 09 08 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 ......<.....0u.. 00c0ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 00c0ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 00c0ffa0 98 09 08 00 ec ff c0 00 - 98 09 08 00 53 46 a9 77 ............SF.w 00c0ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 98 09 08 00 .z.w.z.w...w.... 00c0ffc0 d8 7a a4 77 c3 7a a4 77 - 98 09 08 00 00 c0 fd 7f .z.w.z.w........ 00c0ffd0 60 d3 07 00 c0 ff c0 00 - 60 d3 07 00 ff ff ff ff `.......`....... 00c0ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 00c0fff0 00 00 00 00 39 46 a9 77 - 98 09 08 00 00 00 00 00 ....9F.w........ 00c10000 01 00 00 00 88 d3 07 00 - 01 00 00 00 d0 d3 07 00 ................ 00c10010 01 00 00 00 20 64 09 00 - 01 00 00 00 68 e8 08 00 .... d......h... 00c10020 01 00 00 00 78 eb 08 00 - 01 00 00 00 40 a2 0c 00 ....x.......@... 00c10030 01 00 00 00 38 10 0c 00 - 40 00 c1 00 00 00 00 00 ....8...@....... 00c10040 48 00 c1 00 00 00 00 00 - 50 00 c1 00 00 00 00 00 H.......P....... 00c10050 58 00 c1 00 00 00 00 00 - 60 00 c1 00 00 00 00 00 X.......`....... 00c10060 68 00 c1 00 00 00 00 00 - 70 00 c1 00 00 00 00 00 h.......p....... 00c10070 78 00 c1 00 00 00 00 00 - 80 00 c1 00 00 00 00 00 x............... 00c10080 88 00 c1 00 00 00 00 00 - 90 00 c1 00 00 00 00 00 ................ 00c10090 98 00 c1 00 00 00 00 00 - a0 00 c1 00 00 00 00 00 ................ 线程 ID 0x2a4 的状态转储 eax=00000103 ebx=77f88e68 ecx=01000101 edx=00000000 esi=00000000 edi=00000001 eip=77f88e73 esp=0197facc ebp=0197fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:024dd09f=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FB04 74F57EE6 00000268 0000088C 00000001 00000004 ntdll!NtWaitForSingleObject 0197FBF0 74FB1DA9 00000002 0197FE84 0197FC7C 0197FD80 msafd!WSPSetSockOpt 0197FC54 76BD6F2E 00000002 0197FE84 0197FC7C 0197FD80 ws2_32!select 0197FFB0 76BD6E24 77E687DD 000A2D08 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0197FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0197facc 62 bb f5 74 68 02 00 00 - 01 00 00 00 f0 fa 97 01 b..th........... 0197fadc 84 fe 97 01 78 fb 97 01 - 68 fb 97 01 01 00 00 00 ....x...h....... 0197faec 1c fb 97 01 c0 b4 b3 ff - ff ff ff ff c8 1d 09 00 ................ 0197fafc 00 00 00 00 00 00 00 00 - f0 fb 97 01 e6 7e f5 74 .............~.t 0197fb0c 68 02 00 00 8c 08 00 00 - 01 00 00 00 04 00 00 00 h............... 0197fb1c 80 fd 97 01 28 d6 a7 02 - 7c fc 97 01 00 00 00 00 ....(...|....... 0197fb2c 00 00 00 00 00 98 3b 9e - f7 ff ff ff a4 02 00 00 ......;......... 0197fb3c 68 02 00 00 00 00 00 00 - 00 00 00 00 90 fb 97 01 h............... 0197fb4c 17 20 01 00 80 fb 97 01 - 10 00 00 00 00 00 00 00 . .............. 0197fb5c 01 00 00 00 00 00 00 00 - 00 00 00 00 00 98 3b 9e ..............;. 0197fb6c f7 ff ff ff 03 00 00 00 - 00 1d 09 00 8c 08 00 00 ................ 0197fb7c 19 00 00 00 24 fc 97 01 - a4 02 00 00 19 00 00 00 ....$........... 0197fb8c 20 00 00 00 8c 08 00 00 - 02 01 00 00 00 00 00 00 ............... 0197fb9c 01 00 00 00 90 fb 97 01 - 00 00 00 00 00 00 00 00 ................ 0197fbac c8 1d 09 00 fc fb 97 01 - 01 00 00 00 68 fb 97 01 ............h... 0197fbbc 44 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 D............... 0197fbcc a4 02 00 00 24 fc 97 01 - 9c fb 97 01 1c fb 97 01 ....$........... 0197fbdc 24 fc 97 01 44 fc 97 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0197fbec ff ff ff ff 54 fc 97 01 - a9 1d fb 74 02 00 00 00 ....T......t.... 0197fbfc 84 fe 97 01 7c fc 97 01 - 80 fd 97 01 90 ff 97 01 ....|........... 线程 ID 0x220 的状态转储 eax=0012d020 ebx=00000002 ecx=01c379dc edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=019bfe5c ebp=019bfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0251d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019BFEA8 77DF2A00 019BFE80 00000001 00000000 019BFEA0 ntdll!NtWaitForMultipleObjects 019BFF04 77DF2A77 019BFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 019BFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 019BFF74 77C58FFD 019BFFA0 019BFFA4 019BFFA8 019BFF9C shlwapi!Ordinal271 019BFFAC 77C58F85 76BD1253 77E687DD 00000000 00070178 shlwapi!Ordinal394 019BFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x270 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffda000 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=019ffd24 ebp=019ffd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0255d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFD70 77E6A31D 019FFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 019FFFB4 77E687DD 00000005 000A50A4 7FFDA000 000A50B0 kernel32!WaitForMultipleObjects 019FFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x498 的状态转储 eax=00000001 ebx=80020000 ecx=77b0bed8 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01a4fe28 ebp=01a4ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:025ad3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A4FF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01A4FFA8 78701C6C 0007C208 01A4FFEC 77E687DD 0008B340 rpcrt4!TowerConstruct 01A4FFB4 77E687DD 0008B340 00000000 00000000 0008B340 rpcrt4!I_RpcServerInqTransportType 01A4FFEC 00000000 78701C54 0008B340 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a4fe28 d4 74 71 78 18 01 00 00 - 54 ff a4 01 00 00 00 00 .tqx....T....... 01a4fe38 10 fc 0a 00 58 ff a4 01 - 90 c1 07 00 98 6c 0a 00 ....X........l.. 01a4fe48 20 7f f8 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ..w............ 01a4fe58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4fe68 02 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4fe78 00 00 00 00 00 00 00 00 - 00 00 00 00 be 09 00 00 ................ 01a4fe88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4fe98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4fea8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4feb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4fec8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4fed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4fee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4fef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4ff08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4ff18 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a4ff28 00 00 00 00 60 56 37 81 - 20 b0 26 81 00 00 00 00 ....`V7. .&..... 01a4ff38 20 b0 26 81 b0 b1 26 81 - 64 8c 6e bc f3 da 42 80 .&...&.d.n...B. 01a4ff48 a4 da 42 80 d4 4b 06 80 - 80 b1 26 81 00 00 02 80 ..B..K....&..... 01a4ff58 00 a2 2f 4d ff ff ff ff - 50 fe a4 01 00 00 02 80 ../M....P....... 线程 ID 0x2bc 的状态转储 eax=000947d8 ebx=000ca2c0 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=01acff84 ebp=01acffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:0262d557=???????? 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01ACFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000CA2C0 ntdll!NtRemoveIoCompletion 01ACFFEC 00000000 74F54766 000CA2C0 00000000 01AD005C kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01acff84 b8 47 f5 74 1c 03 00 00 - bc ff ac 01 b0 ff ac 01 .G.t............ 01acff94 a4 ff ac 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01acffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 b0 97 ad 02 ...........t.... 01acffb4 ec ff ac 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01acffc4 00 00 00 00 c0 a2 0c 00 - 00 70 fd 7f 64 f7 9b 01 .........p..d... 01acffd4 c0 ff ac 01 64 f7 9b 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01acffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01acfff4 66 47 f5 74 c0 a2 0c 00 - 00 00 00 00 5c 00 ad 01 fG.t........\... 01ad0004 06 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01ad0014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01ad0024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ad0034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01ad0044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 00 00 00 ................ 01ad0054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 03 00 ................ 01ad0064 00 00 00 00 01 01 04 00 - 00 00 00 00 06 00 00 00 ................ 01ad0074 00 00 01 06 00 00 00 00 - 00 0b 00 00 00 00 00 00 ................ 01ad0084 00 00 00 00 01 03 00 00 - 03 00 00 21 00 00 00 00 ...........!.... 01ad0094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ad00a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 01ad00b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x194 的状态转储 eax=00000001 ebx=01f2ff74 ecx=000004e4 edx=00000000 esi=77f88e68 edi=00000340 eip=77f88e73 esp=01f2ff58 ebp=01f2ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02a8d52b=73006100 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F2FF7C 77E67837 00000340 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B B6C2CD00 B6C2CD00 B6C2CD00 B6C2CD00 B6C2CD00 B6C2CD00 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f2ff58 0f 78 e6 77 40 03 00 00 - 00 00 00 00 74 ff f2 01 .x.w@.......t... 01f2ff68 00 00 00 00 e0 1e ad 01 - 40 7e f8 77 00 44 5f 9a ........@~.w.D_. 01f2ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 40 03 00 00 .... ..w7x.w@... 01f2ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 40 03 00 00 .'......k..u@... 01f2ff98 c0 27 09 00 88 b0 06 00 - e0 1e ad 01 ec ff f2 01 .'.............. 01f2ffa8 e0 1e ad 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f2ffb8 dd 87 e6 77 e0 1e ad 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f2ffc8 e0 1e ad 01 00 60 fd 7f - bd 1b 00 00 c0 ff f2 01 .....`.......... 01f2ffd8 bd 1b 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01f2ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f2fff8 e0 1e ad 01 00 00 00 00 - 0d 00 b6 03 02 00 3f 00 ..............?. 01f30008 3f 00 3f 00 3f 00 81 fe - 00 00 00 00 00 00 00 00 ?.?.?........... 01f30018 00 00 03 80 00 00 01 00 - 02 00 03 00 04 00 05 00 ................ 01f30028 06 00 07 00 08 00 09 00 - 0a 00 0b 00 0c 00 0d 00 ................ 01f30038 0e 00 0f 00 10 00 11 00 - 12 00 13 00 14 00 15 00 ................ 01f30048 16 00 17 00 18 00 19 00 - 1a 00 1b 00 1c 00 1d 00 ................ 01f30058 1e 00 1f 00 20 00 21 00 - 22 00 23 00 24 00 25 00 .... .!.".#.$.%. 01f30068 26 00 27 00 28 00 29 00 - 2a 00 2b 00 2c 00 2d 00 &.'.(.).*.+.,.-. 01f30078 2e 00 2f 00 30 00 31 00 - 32 00 33 00 34 00 35 00 ../.0.1.2.3.4.5. 01f30088 36 00 37 00 38 00 39 00 - 3a 00 3b 00 3c 00 3d 00 6.7.8.9.:.;.<.=. 线程 ID 0x3bc 的状态转储 eax=00000e8f ebx=0207ff74 ecx=75c859dc edx=00000000 esi=77f88e68 edi=0000036c eip=77f88e73 esp=0207ff58 ebp=0207ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02bdd52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0207FF7C 77E67837 0000036C 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B B6C2CD00 B6C2CD00 B6C2CD00 B6C2CD00 B6C2CD00 B6C2CD00 00000000 00000000 00000000 00000000 00000000 线程 ID 0x3d0 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0233ff24 ebp=0233ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:02e9d4f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0233FF70 77E6A31D 0233FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0233FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0233FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0233ff24 b7 7a e6 77 02 00 00 00 - 48 ff 33 02 01 00 00 00 .z.w....H.3..... 0233ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0233ff44 00 00 00 00 e0 03 00 00 - dc 03 00 00 40 0d 29 81 ............@.). 0233ff54 e0 0b 29 81 06 b2 af 75 - 00 20 50 c0 b8 9c a1 81 ..)....u. P..... 0233ff64 b8 9c a1 81 00 00 00 00 - 00 00 00 00 b4 ff 33 02 ..............3. 0233ff74 1d a3 e6 77 48 ff 33 02 - 01 00 00 00 00 00 00 00 ...wH.3......... 0233ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0233ff94 a4 ff 33 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..3............. 0233ffa4 e0 03 00 00 dc 03 00 00 - 00 00 00 00 00 00 00 00 ................ 0233ffb4 ec ff 33 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..3....w........ 0233ffc4 00 00 00 00 00 00 00 00 - 00 40 fd 7f 98 25 fb 77 .........@...%.w 0233ffd4 c0 ff 33 02 98 25 fb 77 - ff ff ff ff 56 18 e8 77 ..3..%.w....V..w 0233ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0233fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02340004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02340014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02340024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02340034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02340044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02340054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x424 的状态转储 eax=00000000 ebx=00000001 ecx=00000000 edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=02ddfe60 ebp=02ddfeac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0393d433=00000000 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02DDFEAC 77DF2A00 02DDFE84 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 02DDFF08 77DF2A77 02DDFED4 00000000 FFFFFFFF 000000FF user32!MsgWaitForMultipleObjectsEx 02DDFF24 76DD9CD1 00000000 00000000 00000000 FFFFFFFF user32!MsgWaitForMultipleObjects 000C7430 00000002 0011F960 00000001 00000424 000005A0 browseui!DllGetClassObject *----> 原始堆栈转储 <----* 02ddfe60 b7 7a e6 77 01 00 00 00 - 84 fe dd 02 01 00 00 00 .z.w............ 02ddfe70 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ddfe80 01 00 00 00 18 02 00 00 - 00 04 00 00 60 ff dd 02 ............`... 02ddfe90 06 04 00 00 88 fe dd 02 - f0 fe dd 02 dc ff dd 02 ................ 02ddfea0 38 27 e4 77 90 70 df 77 - ff ff ff ff 08 ff dd 02 8'.w.p.w........ 02ddfeb0 00 2a df 77 84 fe dd 02 - 01 00 00 00 00 00 00 00 .*.w............ 02ddfec0 00 00 00 00 00 00 00 00 - 00 04 00 00 08 2f c5 77 ............./.w 02ddfed0 06 04 00 00 18 02 00 00 - e0 fe dd 02 30 00 00 00 ............0... 02ddfee0 00 00 03 00 01 00 00 00 - fc 1f 00 10 80 7c df 77 .............|.w 02ddfef0 00 00 00 00 03 04 00 00 - 00 00 00 00 cc 36 fd 7f .............6.. 02ddff00 00 00 00 00 18 02 00 00 - 24 ff dd 02 77 2a df 77 ........$...w*.w 02ddff10 d4 fe dd 02 00 00 00 00 - ff ff ff ff ff 00 00 00 ................ 02ddff20 00 00 00 00 30 74 0c 00 - d1 9c dd 76 00 00 00 00 ....0t.....v.... 02ddff30 00 00 00 00 00 00 00 00 - ff ff ff ff ff 00 00 00 ................ 02ddff40 30 74 0c 00 00 00 00 00 - ac ff dd 02 20 7f f8 77 0t.......... ..w 02ddff50 01 00 00 00 ff ff ff ff - fe ff ff ff 00 00 00 00 ................ 02ddff60 00 00 00 00 03 04 00 00 - 00 00 00 00 00 00 00 00 ................ 02ddff70 2d ba 72 00 79 00 00 00 - 7b 00 00 00 96 9b dd 76 -.r.y...{......v 02ddff80 00 00 00 00 a0 41 c9 77 - 13 90 c5 77 30 74 0c 00 .....A.w...w0t.. 02ddff90 e8 d2 06 00 00 00 c5 77 - 00 00 00 00 0c 00 00 00 .......w........ 线程 ID 0x4a4 的状态转储 eax=7ff9f000 ebx=02eaff70 ecx=7ff9f000 edx=00000000 esi=77f88e68 edi=00000380 eip=77f88e73 esp=02eaff54 ebp=02eaff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:03a0d527=00000000 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02EAFF78 77E67837 00000380 00000004 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000004 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x47c 的状态转储 eax=0072bc6f ebx=00000002 ecx=02a7fd70 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0319fe5c ebp=0319fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03cfd42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0319FEA8 77DF2A00 0319FE80 00000001 00000000 0319FEA0 ntdll!NtWaitForMultipleObjects 0319FF04 77DF2A77 0319FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0319FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0319FF74 77C58FFD 0319FFA0 0319FFA4 0319FFA8 0319FF9C shlwapi!Ordinal271 0319FFAC 77C58F85 77FB64F4 77E687DD 00000000 0197FA10 shlwapi!Ordinal394 0319FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x490 的状态转储 eax=00000000 ebx=00000384 ecx=75ce0000 edx=00000000 esi=0326ff98 edi=77df7c12 eip=77df1d6b esp=0326ff58 ebp=0326ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03dcd52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03dcd52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03dcd52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0326FF78 77535C36 0326FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0326FFB4 77E687DD 00000384 77555428 00064A38 00000384 winmm!midiOutGetNumDevs 0326FFEC 00000000 77535BB9 00000384 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0326ff58 4e 7c df 77 98 ff 26 03 - 00 00 00 00 00 00 00 00 N|.w..&......... 0326ff68 00 00 00 00 84 03 00 00 - 00 00 00 00 12 7c df 77 .............|.w 0326ff78 b4 ff 26 03 36 5c 53 77 - 98 ff 26 03 00 00 00 00 ..&.6\Sw..&..... 0326ff88 00 00 00 00 00 00 00 00 - 28 54 55 77 38 4a 06 00 ........(TUw8J.. 0326ff98 ae 01 0e 00 bc 03 00 00 - bc 2d 0a 00 00 00 00 00 .........-...... 0326ffa8 37 bb 72 00 79 00 00 00 - 7b 00 00 00 ec ff 26 03 7.r.y...{.....&. 0326ffb8 dd 87 e6 77 84 03 00 00 - 28 54 55 77 38 4a 06 00 ...w....(TUw8J.. 0326ffc8 84 03 00 00 00 d0 f9 7f - 00 00 53 77 c0 ff 26 03 ..........Sw..&. 0326ffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 0326ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 0326fff8 84 03 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 ................ 03270008 02 00 00 00 80 00 00 00 - 00 00 00 00 07 05 00 00 ................ 03270018 c4 00 00 00 0b 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03270028 30 0e 27 03 30 00 27 03 - 00 00 00 00 00 00 00 00 0.'.0.'......... 03270038 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03270048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03270058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03270068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03270078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03270088 00 00 00 00 00 00 00 00 - 00 00 00 00 38 fb c5 04 ............8... 线程 ID 0x3cc 的状态转储 eax=00000000 ebx=04e6dde8 ecx=04e7cde0 edx=000deea0 esi=00000000 edi=03b2c394 eip=765bf9c8 esp=03b2c364 ebp=03b2c3ac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: CoInternetCompareUrl 765bf9ae 57 push edi 765bf9af 8d7de8 lea edi,[ebp+0xe8] ss:0468997e=00000000 765bf9b2 8b4b30 mov ecx,[ebx+0x30] ds:059cb3ba=???????? 765bf9b5 57 push edi 765bf9b6 ff75f8 push dword ptr [ebp+0xf8] ss:0468997e=00000000 765bf9b9 8b433c mov eax,[ebx+0x3c] ds:059cb3ba=???????? 765bf9bc 39734c cmp [ebx+0x4c],esi ds:059cb3ba=???????? 765bf9bf 8975e8 mov [ebp+0xe8],esi ss:0468997e=00000000 765bf9c2 ff732c push dword ptr [ebx+0x2c] ds:059cb3ba=???????? 765bf9c5 8975f0 mov [ebp+0xf0],esi ss:0468997e=00000000 错误 ->765bf9c8 8b10 mov edx,[eax] ds:00000000=???????? 765bf9ca 6800c00000 push 0xc000 765bf9cf 51 push ecx 765bf9d0 6802200000 push 0x2002 765bf9d5 56 push esi 765bf9d6 50 push eax 765bf9d7 0f84a7000000 je CoInternetCompareUrl+0x6be0 (765bfa84) 765bf9dd ff520c call dword ptr [edx+0xc] ds:00c3c472=???????? 765bf9e0 3bc6 cmp eax,esi 765bf9e2 8945ec mov [ebp+0xec],eax ss:0468997e=00000000 765bf9e5 0f84a1000000 je CoInternetCompareUrl+0x6be8 (765bfa8c) 765bf9eb 8b4338 mov eax,[ebx+0x38] ds:059cb3ba=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03B2C3AC 765BF923 04EC227E 000000F6 03B2C400 00000000 urlmon!CoInternetCompareUrl 03B2C408 765994AF 000DEF10 04EC227E 000000F6 03B2C430 urlmon!CoInternetCompareUrl 03B2C438 7659A46B 00000000 04EC227E 000000F6 03B2C45C urlmon!CopyStgMedium 03B2C464 7659A3C9 00000000 04EC227E 000000F6 03B2C484 urlmon!FindMediaType 03B2C488 75AC4A75 000A2F98 04EC227E 000000F6 03B2C4D0 urlmon!FindMediaType 03B2C4AC 75AC4918 04EC227E 000000F6 03B2C4D0 01BB0CB0 mshtml! 03B2C4D4 75ABEFE7 75C88E28 01BAD590 03B2C51C 00000000 mshtml! 00000000 00000000 00000000 00000000 00000000 00000000 mshtml! *----> 原始堆栈转储 <----* 03b2c364 f0 ed e7 04 cd 05 00 00 - 94 c3 b2 03 9c c3 b2 03 ................ 03b2c374 00 00 00 00 00 c4 b2 03 - e8 dd e6 04 10 ef 0d 00 ................ 03b2c384 00 00 00 00 01 00 00 00 - e0 71 e9 04 ad 05 00 00 .........q...... 03b2c394 00 00 00 00 00 00 00 00 - 00 00 00 00 00 6f ac 75 .............o.u 03b2c3a4 cd 05 00 00 00 00 00 00 - 08 c4 b2 03 23 f9 5b 76 ............#.[v 03b2c3b4 7e 22 ec 04 f6 00 00 00 - 00 c4 b2 03 00 00 00 00 ~".............. 03b2c3c4 00 c4 b2 03 00 00 00 00 - 29 dd 59 76 e8 dd e6 04 ........).Yv.... 03b2c3d4 7e 22 ec 04 f6 00 00 00 - 00 c4 b2 03 2d 95 59 76 ~"..........-.Yv 03b2c3e4 a8 b9 11 00 7e 22 ec 04 - f6 00 00 00 00 c4 b2 03 ....~".......... 03b2c3f4 7e 22 ec 04 40 af 59 76 - 88 ed 0d 00 00 00 00 00 ~"..@.Yv........ 03b2c404 01 00 00 00 38 c4 b2 03 - af 94 59 76 10 ef 0d 00 ....8.....Yv.... 03b2c414 7e 22 ec 04 f6 00 00 00 - 30 c4 b2 03 48 ae 59 76 ~"......0...H.Yv 03b2c424 7e 22 ec 04 f0 49 ae 02 - b8 ee 0d 00 00 00 00 00 ~"...I.......... 03b2c434 01 00 00 00 64 c4 b2 03 - 6b a4 59 76 00 00 00 00 ....d...k.Yv.... 03b2c444 7e 22 ec 04 f6 00 00 00 - 5c c4 b2 03 00 00 00 00 ~"......\....... 03b2c454 98 2f 0a 00 d0 c4 b2 03 - 00 00 00 00 01 00 00 00 ./.............. 03b2c464 88 c4 b2 03 c9 a3 59 76 - 00 00 00 00 7e 22 ec 04 ......Yv....~".. 03b2c474 f6 00 00 00 84 c4 b2 03 - 00 00 00 00 90 d5 ba 01 ................ 03b2c484 00 00 00 00 ac c4 b2 03 - 75 4a ac 75 98 2f 0a 00 ........uJ.u./.. 03b2c494 7e 22 ec 04 f6 00 00 00 - d0 c4 b2 03 00 00 00 00 ~".............. 线程 ID 0x21c 的状态转储 eax=040dfd1c ebx=00000002 ecx=0009e8d8 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=040dfe5c ebp=040dfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:04c3d42f=00000002 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 040DFEA8 77DF2A00 040DFE80 00000001 00000000 040DFEA0 ntdll!NtWaitForMultipleObjects 040DFF04 77DF2A77 040DFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 040DFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 040DFF74 77C58FFD 040DFFA0 040DFFA4 040DFFA8 040DFF9C shlwapi!Ordinal271 040DFFAC 77C58F85 00000000 77E687DD 00000000 00000000 shlwapi!Ordinal394 040DFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x2a0 的状态转储 eax=00000000 ebx=00000000 ecx=023bf428 edx=00000000 esi=00137508 edi=00000000 eip=77df2268 esp=049aee64 ebp=049aeea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0550c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 049AEEA8 76DF217C 001C024A 049AFFA4 02A820C8 00000000 user32!WaitMessage 049AEF30 76DF1F65 02A820C8 00070718 00000000 02A820C8 browseui!Ordinal102 049AFFAC 76C66950 02A820C8 77E687DD 02A820C8 00070718 browseui!Ordinal102 049AFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 049aee64 92 23 df 76 a4 ff 9a 04 - c8 20 a8 02 00 00 00 00 .#.v..... ...... 049aee74 78 02 02 00 02 80 00 00 - 00 00 00 00 00 00 00 00 x............... 049aee84 4b c2 72 00 46 01 00 00 - ed 00 00 00 48 51 07 00 K.r.F.......HQ.. 049aee94 01 00 00 00 08 75 13 00 - 01 44 00 80 18 53 11 00 .....u...D...S.. 049aeea4 00 00 00 00 30 ef 9a 04 - 7c 21 df 76 4a 02 1c 00 ....0...|!.vJ... 049aeeb4 a4 ff 9a 04 c8 20 a8 02 - 00 00 00 00 00 00 00 00 ..... .......... 049aeec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 049aeed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 049aeee4 f4 ee 9a 04 a4 ff 9a 04 - 00 00 00 00 00 00 00 00 ................ 049aeef4 00 00 00 00 00 00 00 00 - 20 ef 9a 04 37 78 e6 77 ........ ...7x.w 049aef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 049aef14 7f 1a f9 77 b4 ee 9a 04 - 78 dd 06 00 dc ff 9a 04 ...w....x....... 049aef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 9a 04 Rz.vxi.v........ 049aef34 65 1f df 76 c8 20 a8 02 - 18 07 07 00 00 00 00 00 e..v. .......... 049aef44 c8 20 a8 02 00 00 00 00 - 00 00 00 00 00 00 00 00 . .............. 049aef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049aef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049aef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049aef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049aef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x2b4 的状态转储 eax=00000000 ebx=00000000 ecx=0242f1f0 edx=00000000 esi=02a71a68 edi=00000000 eip=77df2268 esp=04b8ee64 ebp=04b8eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:056ec437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04B8EEA8 76DF217C 00020266 04B8FFA4 02A8A9B0 00000000 user32!WaitMessage 04B8EF30 76DF1F65 02A8A9B0 00000000 00000000 02A8A9B0 browseui!Ordinal102 04B8FFAC 76C66950 02A8A9B0 77E687DD 02A8A9B0 00000000 browseui!Ordinal102 04B8FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 04b8ee64 92 23 df 76 a4 ff b8 04 - b0 a9 a8 02 00 00 00 00 .#.v............ 04b8ee74 ae 02 02 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04b8ee84 4b c2 72 00 46 01 00 00 - ed 00 00 00 48 51 07 00 K.r.F.......HQ.. 04b8ee94 01 00 00 00 68 1a a7 02 - 01 44 00 80 a0 1e a7 02 ....h....D...... 04b8eea4 00 00 00 00 30 ef b8 04 - 7c 21 df 76 66 02 02 00 ....0...|!.vf... 04b8eeb4 a4 ff b8 04 b0 a9 a8 02 - 00 00 00 00 00 00 00 00 ................ 04b8eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 04b8eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 04b8eee4 f4 ee b8 04 a4 ff b8 04 - 00 00 00 00 00 00 00 00 ................ 04b8eef4 00 00 00 00 00 00 00 00 - 20 ef b8 04 37 78 e6 77 ........ ...7x.w 04b8ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 04b8ef14 7f 1a f9 77 b4 ee b8 04 - 78 dd 06 00 dc ff b8 04 ...w....x....... 04b8ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff b8 04 Rz.vxi.v........ 04b8ef34 65 1f df 76 b0 a9 a8 02 - 00 00 00 00 00 00 00 00 e..v............ 04b8ef44 b0 a9 a8 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04b8ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04b8ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04b8ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04b8ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04b8ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x3c0 的状态转储 eax=00000038 ebx=052ac580 ecx=0532eebc edx=00000000 esi=04e6edd0 edi=00000000 eip=77df2268 esp=0532ff58 ebp=0532ff84 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:05e8d52b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0532FF84 77C68961 04E6EDD0 00095E88 00000004 76C8FE8D user32!WaitMessage 0532FFB4 77E687DD 052AC580 00095E88 00000004 052AC580 shlwapi!SHCreateThread 0532FFEC 00000000 77C6892B 052AC580 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0532ff58 88 ff c8 76 00 00 00 00 - 9c c5 2a 05 e4 02 03 00 ...v......*..... 0532ff68 65 04 00 00 00 00 00 00 - 58 34 58 04 4b c2 72 00 e.......X4X.K.r. 0532ff78 46 01 00 00 ed 00 00 00 - 00 00 00 00 b4 ff 32 05 F.............2. 0532ff88 61 89 c6 77 d0 ed e6 04 - 88 5e 09 00 04 00 00 00 a..w.....^...... 0532ff98 8d fe c8 76 00 00 00 00 - 98 08 00 00 d0 ed e6 04 ...v............ 0532ffa8 04 00 00 00 00 00 00 00 - 48 51 07 00 ec ff 32 05 ........HQ....2. 0532ffb8 dd 87 e6 77 80 c5 2a 05 - 88 5e 09 00 04 00 00 00 ...w..*..^...... 0532ffc8 80 c5 2a 05 00 70 f9 7f - 08 00 00 00 c0 ff 32 05 ..*..p........2. 0532ffd8 08 00 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 0532ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 2b 89 c6 77 ............+..w 0532fff8 80 c5 2a 05 00 00 00 00 - c8 00 00 00 00 01 00 00 ..*............. 05330008 ff ee ff ee 02 10 00 00 - 00 00 00 00 00 fe 00 00 ................ 05330018 00 00 10 00 00 20 00 00 - 00 02 00 00 00 20 00 00 ..... ....... .. 05330028 2f 02 00 00 ff ef fd 7f - 10 00 08 06 00 00 00 00 /............... 05330038 00 00 00 00 00 00 00 00 - 00 00 00 00 98 05 33 05 ..............3. 05330048 0f 00 00 00 f8 ff ff ff - 50 00 33 05 50 00 33 05 ........P.3.P.3. 05330058 40 06 33 05 00 00 00 00 - 00 00 00 00 00 00 00 00 @.3............. 05330068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05330078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05330088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 发生应用程序意外错误: 应用程序: iexplore.exe (pid=540) 时间: 2003-9-14 @ 22:15:33.796 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 604 svchost.exe 800 Explorer.exe 832 Rundll32.exe 1044 daemon.exe 1052 RealPlay.exe 1076 internat.exe 1084 AcroTray.exe 884 XDICT.exe 916 wuauclt.exe 540 iexplore.exe 672 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (75A60000 - 75A88000) (75010000 - 75020000) (77530000 - 77560000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75CE0000 - 75CE6000) (75A40000 - 75A48000) (75D80000 - 75DF7000) (025E0000 - 0276D000) (76AF0000 - 76B2D000) (72750000 - 72759000) (51000000 - 51044000) (72800000 - 72806000) (68EF0000 - 68F0F000) (751C0000 - 751D5000) (76B30000 - 76B44000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (773A0000 - 773B5000) (6AC80000 - 6ACBC000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) 线程 ID 0x3a8 的状态转储 eax=00000000 ebx=000b2fd8 ecx=0878bf88 edx=02e91068 esi=00000000 edi=0006b278 eip=765bf9c8 esp=0006b248 ebp=0006b290 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: CoInternetCompareUrl 765bf9ae 57 push edi 765bf9af 8d7de8 lea edi,[ebp+0xe8] ss:00bc8862=???????? 765bf9b2 8b4b30 mov ecx,[ebx+0x30] ds:00c105aa=000000c1 765bf9b5 57 push edi 765bf9b6 ff75f8 push dword ptr [ebp+0xf8] ss:00bc8862=???????? 765bf9b9 8b433c mov eax,[ebx+0x3c] ds:00c105aa=000000c1 765bf9bc 39734c cmp [ebx+0x4c],esi ds:00c105aa=000000c1 765bf9bf 8975e8 mov [ebp+0xe8],esi ss:00bc8862=???????? 765bf9c2 ff732c push dword ptr [ebx+0x2c] ds:00c105aa=000000c1 765bf9c5 8975f0 mov [ebp+0xf0],esi ss:00bc8862=???????? 错误 ->765bf9c8 8b10 mov edx,[eax] ds:00000000=???????? 765bf9ca 6800c00000 push 0xc000 765bf9cf 51 push ecx 765bf9d0 6802200000 push 0x2002 765bf9d5 56 push esi 765bf9d6 50 push eax 765bf9d7 0f84a7000000 je CoInternetCompareUrl+0x6be0 (765bfa84) 765bf9dd ff520c call dword ptr [edx+0xc] ds:039ee63a=d0dac7d0 765bf9e0 3bc6 cmp eax,esi 765bf9e2 8945ec mov [ebp+0xec],eax ss:00bc8862=???????? 765bf9e5 0f84a1000000 je CoInternetCompareUrl+0x6be8 (765bfa8c) 765bf9eb 8b4338 mov eax,[ebx+0x38] ds:00c105aa=000000c1 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006B290 765BF923 04C9F12E 00000DF6 0006B2E4 00000000 urlmon!CoInternetCompareUrl 0006B2EC 765994AF 02E910D8 04C9F12E 00000DF6 0006B314 urlmon!CoInternetCompareUrl 0006B31C 7659A46B 00000000 04C9F12E 00000DF6 0006B340 urlmon!CopyStgMedium 0006B348 7659A3C9 00000000 04C9F12E 00000DF6 0006B368 urlmon!FindMediaType 0006B36C 75AC4A75 02AA9D08 04C9F12E 00000DF6 0006B3B4 urlmon!FindMediaType 0006B390 75AC4918 04C9F12E 00000DF6 0006B3B4 01CABAE0 mshtml! 0006B3B8 75ABEFE7 75C88E28 01CAB280 0006B400 00000000 mshtml! 00000000 00000000 00000000 00000000 00000000 00000000 mshtml! *----> 原始堆栈转储 <----* 0006b248 e0 48 b2 02 da 07 00 00 - 78 b2 06 00 80 b2 06 00 .H......x....... 0006b258 00 00 00 00 e4 b2 06 00 - d8 2f 0b 00 d8 10 e9 02 ........./...... 0006b268 00 00 00 00 01 00 00 00 - 00 00 07 00 4f 02 00 00 ............O... 0006b278 00 00 00 00 00 00 00 00 - 00 00 00 00 00 6f ac 75 .............o.u 0006b288 da 07 00 00 00 00 00 00 - ec b2 06 00 23 f9 5b 76 ............#.[v 0006b298 2e f1 c9 04 f6 0d 00 00 - e4 b2 06 00 00 00 00 00 ................ 0006b2a8 e4 b2 06 00 00 00 00 00 - 29 dd 59 76 d8 2f 0b 00 ........).Yv./.. 0006b2b8 2e f1 c9 04 f6 0d 00 00 - e4 b2 06 00 2d 95 59 76 ............-.Yv 0006b2c8 38 db f1 02 2e f1 c9 04 - f6 0d 00 00 e4 b2 06 00 8............... 0006b2d8 2e f1 c9 04 40 af 59 76 - 50 0f e9 02 00 00 00 00 ....@.YvP....... 0006b2e8 01 00 00 00 1c b3 06 00 - af 94 59 76 d8 10 e9 02 ..........Yv.... 0006b2f8 2e f1 c9 04 f6 0d 00 00 - 14 b3 06 00 48 ae 59 76 ............H.Yv 0006b308 2e f1 c9 04 e0 bd 09 00 - 80 10 e9 02 00 00 00 00 ................ 0006b318 01 00 00 00 48 b3 06 00 - 6b a4 59 76 00 00 00 00 ....H...k.Yv.... 0006b328 2e f1 c9 04 f6 0d 00 00 - 40 b3 06 00 00 00 00 00 ........@....... 0006b338 08 9d aa 02 b4 b3 06 00 - 00 00 00 00 01 00 00 00 ................ 0006b348 6c b3 06 00 c9 a3 59 76 - 00 00 00 00 2e f1 c9 04 l.....Yv........ 0006b358 f6 0d 00 00 68 b3 06 00 - 00 00 00 00 80 b2 ca 01 ....h........... 0006b368 00 00 00 00 90 b3 06 00 - 75 4a ac 75 08 9d aa 02 ........uJ.u.... 0006b378 2e f1 c9 04 f6 0d 00 00 - b4 b3 06 00 00 00 00 00 ................ 线程 ID 0x398 的状态转储 eax=00000057 ebx=ffffffff ecx=000ccc88 edx=00000000 esi=7fffffff edi=00000102 eip=77f88e73 esp=0197facc ebp=0197fb04 iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:024dd09f=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FB04 74F57EE6 0000021C 00000220 00000000 00000004 ntdll!NtWaitForSingleObject 0197FBF0 74FB1DA9 00000001 0197FE84 0197FC7C 0197FD80 msafd!WSPSetSockOpt 0197FC54 76BD6F2E 00000001 0197FE84 0197FC7C 0197FD80 ws2_32!select 0197FFB0 76BD6E24 77E687DD 000A2C20 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0197FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0197facc d2 bc f5 74 1c 02 00 00 - 01 00 00 00 f0 fa 97 01 ...t............ 0197fadc 84 fe 97 01 78 fb 97 01 - 68 fb 97 01 6e 08 3f a9 ....x...h...n.?. 0197faec ca 7a c3 01 ff ff ff ff - ff ff ff 7f b0 1b 09 00 .z.............. 0197fafc 00 00 00 00 00 00 00 00 - f0 fb 97 01 e6 7e f5 74 .............~.t 0197fb0c 1c 02 00 00 20 02 00 00 - 00 00 00 00 04 00 00 00 .... ........... 0197fb1c 80 fd 97 01 e8 1c 09 00 - 7c fc 97 01 00 00 00 00 ........|....... 0197fb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff 20 02 00 00 ............ ... 0197fb3c 1c 02 00 00 00 00 00 00 - 00 00 07 00 90 fb 97 01 ................ 0197fb4c 17 20 01 00 80 fb 97 01 - 10 00 00 00 00 00 00 00 . .............. 0197fb5c 06 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 0197fb6c ff ff ff ff 01 00 00 00 - 00 1b 09 00 20 02 00 00 ............ ... 0197fb7c 19 00 00 00 30 00 00 00 - 20 02 00 00 a0 41 c9 77 ....0... ....A.w 0197fb8c a0 41 c9 77 dc fb 97 01 - f4 64 fb 77 48 16 f8 77 .A.w.....d.wH..w 0197fb9c ff ff ff ff ec fb 97 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 0197fbac b0 1b 09 00 24 00 00 00 - 00 00 00 00 68 fb 97 01 ....$.......h... 0197fbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 0197fbcc 00 00 00 00 1c 00 00 00 - 84 fb 97 01 1c fb 97 01 ................ 0197fbdc 24 fc 97 01 44 fc 97 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0197fbec ff ff ff ff 54 fc 97 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 0197fbfc 84 fe 97 01 7c fc 97 01 - 80 fd 97 01 90 ff 97 01 ....|........... 线程 ID 0x498 的状态转储 eax=00000003 ebx=00000004 ecx=00000101 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=019ffd24 ebp=019ffd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0255d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFD70 77E6A31D 019FFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 019FFFB4 77E687DD 00000005 000A43E4 7FFDA000 000A50E8 kernel32!WaitForMultipleObjects 019FFFEC 00000000 777F21FE 000A50E8 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 019ffd24 b7 7a e6 77 04 00 00 00 - 48 fd 9f 01 01 00 00 00 .z.w....H....... 019ffd34 00 00 00 00 00 00 00 00 - 01 00 00 00 e8 50 0a 00 .............P.. 019ffd44 01 00 00 00 3c 02 00 00 - 40 02 00 00 50 02 00 00 ....<...@...P... 019ffd54 e8 02 00 00 46 00 69 00 - 6c 00 65 00 73 00 2f 00 ....F.i.l.e.s./. 019ffd64 4c 02 00 00 11 00 00 00 - 02 00 00 00 b4 ff 9f 01 L............... 019ffd74 1d a3 e6 77 48 fd 9f 01 - 01 00 00 00 00 00 00 00 ...wH........... 019ffd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 019ffd94 b0 fe 9f 01 00 00 00 00 - ff ff ff ff e8 50 0a 00 .............P.. 019ffda4 00 a0 fd 7f e4 43 0a 00 - 00 00 00 00 38 00 00 00 .....C......8... 019ffdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 019ffdc4 23 00 00 00 23 00 00 00 - e4 43 0a 00 00 a0 fd 7f #...#....C...... 019ffdd4 e8 50 0a 00 00 a0 fd 7f - 00 a0 fd 7f fe 21 7f 77 .P...........!.w 019ffde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 019ffdf4 fc ff 9f 01 23 00 00 00 - 00 00 00 00 ff ff ff ff ....#........... 019ffe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffe14 90 26 52 81 00 00 00 00 - 00 00 30 c0 66 be 42 80 .&R.......0.f.B. 019ffe24 08 70 12 00 14 2c 52 81 - 90 26 52 81 00 00 00 00 .p...,R..&R..... 019ffe34 00 00 00 00 91 ec 00 00 - 98 fb 4f ed 1a 7f e0 bf ..........O..... 019ffe44 00 00 00 00 59 7f e0 bf - 08 ed 74 81 06 02 00 00 ....Y.....t..... 019ffe54 47 e9 42 80 08 ed 74 81 - 40 26 52 81 01 00 00 00 G.B...t.@&R..... 线程 ID 0x2b4 的状态转储 eax=02e4eb30 ebx=80060000 ecx=0007c3a8 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01a7fe28 ebp=01a7ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:025dd3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A7FF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01A7FFA8 78701C6C 0007C208 01A7FFEC 77E687DD 000AFA38 rpcrt4!TowerConstruct 01A7FFB4 77E687DD 000AFA38 00000000 00000000 000AFA38 rpcrt4!I_RpcServerInqTransportType 01A7FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x2b0 的状态转储 eax=00000000 ebx=00000000 ecx=00010101 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01affe28 ebp=01afff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0265d3fb=084d8b1a 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AFFF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01AFFFA8 78701C6C 0007C208 01AFFFEC 77E687DD 000C7E00 rpcrt4!TowerConstruct 01AFFFB4 77E687DD 000C7E00 00000000 00000000 000C7E00 rpcrt4!I_RpcServerInqTransportType 01AFFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x468 的状态转储 eax=00000067 ebx=01f9ff74 ecx=00000069 edx=00000000 esi=77f88e68 edi=000002f8 eip=77f88e73 esp=01f9ff58 ebp=01f9ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02afd52b=67006e00 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F9FF7C 77E67837 000002F8 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f9ff58 0f 78 e6 77 f8 02 00 00 - 00 00 00 00 74 ff f9 01 .x.w........t... 01f9ff68 00 00 00 00 c0 22 b4 01 - 40 7e f8 77 00 44 5f 9a ....."..@~.w.D_. 01f9ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 f8 02 00 00 .... ..w7x.w.... 01f9ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 f8 02 00 00 .'......k..u.... 01f9ff98 c0 27 09 00 2c 20 06 00 - c0 22 b4 01 ec ff f9 01 .'.., ..."...... 01f9ffa8 c0 22 b4 01 9a f4 b2 75 - 13 fc b2 75 74 f4 b2 75 .".....u...ut..u 01f9ffb8 dd 87 e6 77 c0 22 b4 01 - 2c 20 06 00 13 fc b2 75 ...w.".., .....u 01f9ffc8 c0 22 b4 01 00 40 fd 7f - 95 18 00 00 c0 ff f9 01 ."...@.......... 01f9ffd8 95 18 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01f9ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f9fff8 c0 22 b4 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ."......LCDT.... 01fa0008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 01fa0018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 01fa0028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 01fa0038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 01fa0048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 01fa0058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 01fa0068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 01fa0078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01fa0088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x2f0 的状态转储 eax=04d5c540 ebx=0213ff74 ecx=0016af10 edx=00000000 esi=77f88e68 edi=00000374 eip=77f88e73 esp=0213ff58 ebp=0213ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02c9d52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0213FF7C 77E67837 00000374 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x4b4 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0227ff24 ebp=0227ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:02ddd4f7=00000000 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0227FF70 77E6A31D 0227FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0227FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0227FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x328 的状态转储 eax=04c54f08 ebx=00000410 ecx=02e830f8 edx=00000000 esi=022bff98 edi=77df7c12 eip=77df1d6b esp=022bff58 ebp=022bff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:02e1d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:02e1d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:02e1d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 022BFF78 77535C36 022BFF98 00000000 00000000 00000000 user32!TranslateMessageEx 022BFFB4 77E687DD 00000410 77555428 000691BC 00000410 winmm!midiOutGetNumDevs 022BFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x10c 的状态转储 eax=00000000 ebx=00000000 ecx=00010101 edx=00000000 esi=77f88e68 edi=0000050c eip=77f88e73 esp=02bbff54 ebp=02bbff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:0371d527=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02BBFF78 77E67837 0000050C FFFFFFFF 00000000 75BDA104 ntdll!NtWaitForSingleObject FFFFFFFF 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x3c0 的状态转储 eax=00000000 ebx=80060000 ecx=0007c670 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=03cefe28 ebp=03ceff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0484d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03CEFF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 03CEFFA8 78701C6C 0007C208 03CEFFEC 77E687DD 02A9F760 rpcrt4!TowerConstruct 03CEFFB4 77E687DD 02A9F760 00000000 00000000 02A9F760 rpcrt4!I_RpcServerInqTransportType 03CEFFEC 00000000 78701C54 02A9F760 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 03cefe28 d4 74 71 78 18 01 00 00 - 54 ff ce 03 00 00 00 00 .tqx....T....... 03cefe38 60 b8 0a 00 58 ff ce 03 - 90 c1 07 00 08 fa b0 02 `...X........... 03cefe48 20 7f f8 77 18 a6 72 e2 - 01 00 1f 00 2c 8f 37 81 ..w..r.....,.7. 03cefe58 a8 99 3f 81 00 00 00 00 - 7d f3 44 80 2c 2b 4c bc ..?.....}.D.,+L. 03cefe68 02 91 00 00 03 00 1f 00 - 28 8f 37 81 c4 99 3f 81 ........(.7...?. 03cefe78 c0 2b 4c bc 88 79 3c 81 - 00 02 00 00 31 25 00 00 .+L..y<.....1%.. 03cefe88 00 00 00 00 60 91 89 81 - 03 00 1f 00 00 d0 b5 03 ....`........... 03cefe98 38 2b 4c bc 00 8f 37 81 - 98 22 20 e2 74 ed 00 c0 8+L...7.." .t... 03cefea8 01 8f 37 81 00 00 00 00 - 00 2d 4c bc 14 00 00 00 ..7......-L..... 03cefeb8 01 00 00 00 00 00 00 00 - 80 02 00 00 74 ed 00 c0 ............t... 03cefec8 a8 99 3f 81 38 00 30 c0 - 28 8f 37 81 88 3b 2b 81 ..?.8.0.(.7..;+. 03cefed8 00 00 00 00 fb 59 4a 80 - 01 00 00 00 ff df b5 03 .....YJ......... 03cefee8 50 6f 72 f4 00 00 00 00 - a0 7c 3f 81 00 10 00 00 Por......|?..... 03cefef8 00 00 00 00 28 8f 37 81 - 00 d0 b5 03 00 75 50 c0 ....(.7......uP. 03ceff08 d0 2a 4c bc 00 00 00 00 - ff ff ff ff 8c 05 46 80 .*L...........F. 03ceff18 38 31 40 80 ff ff ff ff - 38 2c 4c bc 91 50 46 80 81@.....8,L..PF. 03ceff28 ff ff ff ff a0 7c 3f 81 - 00 05 27 81 00 00 00 00 .....|?...'..... 03ceff38 00 05 27 81 90 06 27 81 - 64 2c 4c bc f3 da 42 80 ..'...'.d,L...B. 03ceff48 a4 da 42 80 d4 4b 06 80 - 60 06 27 81 00 00 06 80 ..B..K..`.'..... 03ceff58 00 a2 2f 4d ff ff ff ff - 50 fe ce 03 00 00 06 80 ../M....P....... 线程 ID 0x390 的状态转储 eax=00000000 ebx=00000102 ecx=77b0ba28 edx=00000000 esi=77f882f8 edi=0761ff74 eip=77f88303 esp=0761ff60 ebp=0761ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0817d533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0761FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x3a4 的状态转储 eax=000dcb38 ebx=04da9620 ecx=02afeae0 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=0769ff84 ebp=0769ffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:081fd557=???????? 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0769FFB4 77E687DD 74F55F4B 7FF98000 00000000 04DA9620 ntdll!NtRemoveIoCompletion 0769FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x36c 的状态转储 eax=0785f34c ebx=00000002 ecx=289b8cbf edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0785fe5c ebp=0785fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:083bd42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0785FEA8 77DF2A00 0785FE80 00000001 00000000 0785FEA0 ntdll!NtWaitForMultipleObjects 0785FF04 77DF2A77 0785FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0785FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0785FF74 77C58FFD 0785FFA0 0785FFA4 0785FFA8 0785FF9C shlwapi!Ordinal271 0785FFAC 77C58F85 76BD1253 77E687DD 00000000 01F9CF6C shlwapi!Ordinal394 0785FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x3c8 的状态转储 eax=0ab7fd44 ebx=00000002 ecx=000a2c48 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0ab7fe5c ebp=0ab7fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0b6dd42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0AB7FEA8 77DF2A00 0AB7FE80 00000001 00000000 0AB7FEA0 ntdll!NtWaitForMultipleObjects 0AB7FF04 77DF2A77 0AB7FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0AB7FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0AB7FF74 77C58FFD 0AB7FFA0 0AB7FFA4 0AB7FFA8 0AB7FF9C shlwapi!Ordinal271 0AB7FFAC 77C58F85 76BD1253 77E687DD 00000000 01F9CF6C shlwapi!Ordinal394 0AB7FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x378 的状态转储 eax=0008e888 ebx=00000001 ecx=7ff95000 edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=0abbfe60 ebp=0abbfeac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0b71d433=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0ABBFEAC 77DF2A00 0ABBFE84 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0ABBFF08 77DF2A77 0ABBFED4 00000000 FFFFFFFF 000000FF user32!MsgWaitForMultipleObjectsEx 0ABBFF24 76DD9CD1 00000000 00000000 00000000 FFFFFFFF user32!MsgWaitForMultipleObjects 00090880 00000002 000903D0 00000001 00000378 00000388 browseui!DllGetClassObject *----> 原始堆栈转储 <----* 0abbfe60 b7 7a e6 77 01 00 00 00 - 84 fe bb 0a 01 00 00 00 .z.w............ 0abbfe70 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0abbfe80 01 00 00 00 d4 0a 00 00 - 00 04 00 00 60 ff bb 0a ............`... 0abbfe90 06 04 00 00 88 fe bb 0a - f0 fe bb 0a dc ff bb 0a ................ 0abbfea0 38 27 e4 77 90 70 df 77 - ff ff ff ff 08 ff bb 0a 8'.w.p.w........ 0abbfeb0 00 2a df 77 84 fe bb 0a - 01 00 00 00 00 00 00 00 .*.w............ 0abbfec0 00 00 00 00 00 00 00 00 - 00 04 00 00 08 2f c5 77 ............./.w 0abbfed0 06 04 00 00 d4 0a 00 00 - e0 fe bb 0a 30 00 00 00 ............0... 0abbfee0 00 00 03 00 01 00 00 00 - fc 1f 00 10 80 7c df 77 .............|.w 0abbfef0 00 00 00 00 02 04 00 00 - 00 00 00 00 cc 56 f9 7f .............V.. 0abbff00 00 00 00 00 d4 0a 00 00 - 24 ff bb 0a 77 2a df 77 ........$...w*.w 0abbff10 d4 fe bb 0a 00 00 00 00 - ff ff ff ff ff 00 00 00 ................ 0abbff20 00 00 00 00 80 08 09 00 - d1 9c dd 76 00 00 00 00 ...........v.... 0abbff30 00 00 00 00 00 00 00 00 - ff ff ff ff ff 00 00 00 ................ 0abbff40 80 08 09 00 00 00 00 00 - ac ff bb 0a 20 7f f8 77 ............ ..w 0abbff50 01 00 00 00 ff ff ff ff - fe ff ff ff 00 00 00 00 ................ 0abbff60 00 00 00 00 02 04 00 00 - 00 00 00 00 00 00 00 00 ................ 0abbff70 32 d2 fa 05 cc 00 00 00 - 5e 00 00 00 96 9b dd 76 2.......^......v 0abbff80 00 00 00 00 a0 41 c9 77 - 13 90 c5 77 80 08 09 00 .....A.w...w.... 0abbff90 6c cf f9 01 00 00 c5 77 - 00 00 00 00 0c 00 00 00 l......w........ 发生应用程序意外错误: 应用程序: iexplore.exe (pid=888) 时间: 2003-9-14 @ 22:17:15.359 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 604 svchost.exe 800 Explorer.exe 832 Rundll32.exe 1044 daemon.exe 1052 RealPlay.exe 1076 internat.exe 1084 AcroTray.exe 884 XDICT.exe 916 wuauclt.exe 888 iexplore.exe 1020 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (75D80000 - 75DF7000) (02660000 - 027ED000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (75A40000 - 75A48000) (72750000 - 72759000) (51000000 - 51044000) (72800000 - 72806000) (68EF0000 - 68F0F000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (6AC80000 - 6ACBC000) (751C0000 - 751D5000) (6DDA0000 - 6DDAA000) (759D0000 - 75A3B000) 线程 ID 0x3a8 的状态转储 eax=00000000 ebx=00000000 ecx=027faa98 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 00320148 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 26 01 1e 00 02 80 00 00 - 00 00 00 00 00 00 00 00 &............... 0006dd68 1f 61 fc 05 26 03 00 00 - 73 00 00 00 00 00 00 00 .a..&...s....... 0006dd78 04 00 00 00 18 ac 07 00 - 01 44 00 80 48 51 07 00 .........D..HQ.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 48 01 32 00 ........|!.vH.2. 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x36c 的状态转储 eax=00000000 ebx=00000102 ecx=77b0bd40 edx=00000000 esi=77f882f8 edi=00c0ff74 eip=77f88303 esp=00c0ff60 ebp=00c0ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0176d533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00C0FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 00c0ff60 17 76 e6 77 00 00 00 00 - 74 ff c0 00 b5 77 e6 77 .v.w....t....w.w 00c0ff70 98 09 08 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 ......<.....0u.. 00c0ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 00c0ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 00c0ffa0 98 09 08 00 ec ff c0 00 - 98 09 08 00 53 46 a9 77 ............SF.w 00c0ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 98 09 08 00 .z.w.z.w...w.... 00c0ffc0 d8 7a a4 77 c3 7a a4 77 - 98 09 08 00 00 c0 fd 7f .z.w.z.w........ 00c0ffd0 60 d3 07 00 c0 ff c0 00 - 60 d3 07 00 ff ff ff ff `.......`....... 00c0ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 00c0fff0 00 00 00 00 39 46 a9 77 - 98 09 08 00 00 00 00 00 ....9F.w........ 00c10000 01 00 00 00 88 d3 07 00 - 01 00 00 00 d0 d3 07 00 ................ 00c10010 01 00 00 00 90 63 09 00 - 01 00 00 00 d8 0f 0d 00 .....c.......... 00c10020 01 00 00 00 e8 e2 09 00 - 01 00 00 00 50 d2 0a 00 ............P... 00c10030 01 00 00 00 58 9e 11 00 - 40 00 c1 00 00 00 00 00 ....X...@....... 00c10040 48 00 c1 00 00 00 00 00 - 50 00 c1 00 00 00 00 00 H.......P....... 00c10050 58 00 c1 00 00 00 00 00 - 60 00 c1 00 00 00 00 00 X.......`....... 00c10060 68 00 c1 00 00 00 00 00 - 70 00 c1 00 00 00 00 00 h.......p....... 00c10070 78 00 c1 00 00 00 00 00 - 80 00 c1 00 00 00 00 00 x............... 00c10080 88 00 c1 00 00 00 00 00 - 90 00 c1 00 00 00 00 00 ................ 00c10090 98 00 c1 00 00 00 00 00 - a0 00 c1 00 00 00 00 00 ................ 线程 ID 0x3c0 的状态转储 eax=77c941a8 ebx=77f88e68 ecx=7ffdb000 edx=00000000 esi=00000000 edi=00000001 eip=77f88e73 esp=0197facc ebp=0197fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:024dd09f=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FB04 74F57EE6 0000021C 00000730 00000001 00000004 ntdll!NtWaitForSingleObject 0197FBF0 74FB1DA9 00000003 0197FE84 0197FC7C 0197FD80 msafd!WSPSetSockOpt 0197FC54 76BD6F2E 00000003 0197FE84 0197FC7C 0197FD80 ws2_32!select 0197FFB0 76BD6E24 77E687DD 000A2CB0 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0197FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0197facc 62 bb f5 74 1c 02 00 00 - 01 00 00 00 f0 fa 97 01 b..t............ 0197fadc 84 fe 97 01 d0 06 97 02 - c0 06 97 02 68 00 00 00 ............h... 0197faec ca 7a c3 01 c0 b4 b3 ff - ff ff ff ff 50 42 0a 00 .z..........PB.. 0197fafc 00 00 00 00 00 00 00 00 - f0 fb 97 01 e6 7e f5 74 .............~.t 0197fb0c 1c 02 00 00 30 07 00 00 - 01 00 00 00 04 00 00 00 ....0........... 0197fb1c 80 fd 97 01 c0 cf 14 00 - 7c fc 97 01 40 a8 81 ff ........|...@... 0197fb2c ff ff ff ff 00 cf 60 4e - ff ff ff ff 20 02 00 00 ......`N.... ... 0197fb3c 1c 02 00 00 00 00 00 00 - 00 00 00 00 90 fb 97 01 ................ 0197fb4c 17 20 01 00 80 fb 97 01 - 10 00 00 00 00 00 00 00 . .............. 0197fb5c 01 00 00 00 40 a8 81 ff - ff ff ff ff 00 00 00 00 ....@........... 0197fb6c ff ff ff ff 01 00 00 00 - 50 42 0a 00 1c 02 00 00 ........PB...... 0197fb7c 01 00 00 00 24 fc 97 01 - 01 00 00 00 00 00 00 00 ....$........... 0197fb8c 20 00 00 00 00 00 00 00 - 01 00 00 00 00 00 00 00 ............... 0197fb9c ff ff ff ff 90 fb 97 01 - 00 00 00 00 00 00 00 00 ................ 0197fbac 50 42 0a 00 fc fb 97 01 - 02 00 00 00 c0 06 97 02 PB.............. 0197fbbc 5c 00 00 00 05 00 00 00 - 00 00 00 00 00 00 00 00 \............... 0197fbcc 20 02 00 00 24 fc 97 01 - 0c 07 97 02 1c fb 97 01 ...$........... 0197fbdc 24 fc 97 01 44 fc 97 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0197fbec ff ff ff ff 54 fc 97 01 - a9 1d fb 74 03 00 00 00 ....T......t.... 0197fbfc 84 fe 97 01 7c fc 97 01 - 80 fd 97 01 90 ff 97 01 ....|........... 线程 ID 0x10c 的状态转储 eax=019bffdc ebx=00000002 ecx=019bfe64 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=019bfe5c ebp=019bfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0251d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019BFEA8 77DF2A00 019BFE80 00000001 00000000 019BFEA0 ntdll!NtWaitForMultipleObjects 019BFF04 77DF2A77 019BFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 019BFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 019BFF74 77C58FFD 019BFFA0 019BFFA4 019BFFA8 019BFF9C shlwapi!Ordinal271 019BFFAC 77C58F85 76BD1253 77E687DD 00000000 00070178 shlwapi!Ordinal394 019BFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x2a0 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffda000 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=019ffd24 ebp=019ffd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0255d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFD70 77E6A31D 019FFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 019FFFB4 77E687DD 00000005 000A40B4 7FFDA000 000A4E18 kernel32!WaitForMultipleObjects 019FFFEC 00000000 777F21FE 000A4E18 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 019ffd24 b7 7a e6 77 04 00 00 00 - 48 fd 9f 01 01 00 00 00 .z.w....H....... 019ffd34 00 00 00 00 00 00 00 00 - 01 00 00 00 18 4e 0a 00 .............N.. 019ffd44 01 00 00 00 3c 02 00 00 - 40 02 00 00 50 02 00 00 ....<...@...P... 019ffd54 14 03 00 00 e2 7b 41 80 - 00 00 00 00 60 d9 46 80 .....{A.....`.F. 019ffd64 e8 e6 ab e2 90 ca ee bb - 2b e7 49 80 b4 ff 9f 01 ........+.I..... 019ffd74 1d a3 e6 77 48 fd 9f 01 - 01 00 00 00 00 00 00 00 ...wH........... 019ffd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 019ffd94 b0 fe 9f 01 00 00 00 00 - ff ff ff ff 18 4e 0a 00 .............N.. 019ffda4 00 a0 fd 7f b4 40 0a 00 - 00 00 00 00 e0 cb ee bb .....@.......... 019ffdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 019ffdc4 23 00 00 00 23 00 00 00 - b4 40 0a 00 00 a0 fd 7f #...#....@...... 019ffdd4 18 4e 0a 00 00 a0 fd 7f - 00 a0 fd 7f fe 21 7f 77 .N...........!.w 019ffde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 019ffdf4 fc ff 9f 01 23 00 00 00 - 02 00 01 00 00 00 00 00 ....#........... 019ffe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffe14 00 ff ff ff 00 00 00 00 - 32 8d fc 77 ab a0 f8 77 ........2..w...w 019ffe24 c4 0e 00 00 60 92 8e 81 - 00 07 00 00 ae cc 44 80 ....`.........D. 019ffe34 c4 0e 00 00 60 92 8e 81 - c4 0e 00 00 60 92 8e 81 ....`.......`... 019ffe44 01 d2 fd 7f 04 0f 00 00 - 41 d6 44 80 04 0f 00 00 ........A.D..... 019ffe54 70 7d 3f 81 00 d0 fd 7f - fc 07 30 c0 00 00 00 00 p}?.......0..... 线程 ID 0x314 的状态转储 eax=0007c3a8 ebx=80020000 ecx=0007c3a8 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01a6fe28 ebp=01a6ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:025cd3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A6FF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01A6FFA8 78701C6C 0007C208 01A6FFEC 77E687DD 000AF178 rpcrt4!TowerConstruct 01A6FFB4 77E687DD 000AF178 00000000 00000000 000AF178 rpcrt4!I_RpcServerInqTransportType 01A6FFEC 00000000 78701C54 000AF178 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a6fe28 d4 74 71 78 18 01 00 00 - 54 ff a6 01 00 00 00 00 .tqx....T....... 01a6fe38 d8 82 5b 04 58 ff a6 01 - 90 c1 07 00 c0 2c 0b 00 ..[.X........,.. 01a6fe48 20 7f f8 77 01 b2 fd 7f - 03 01 00 00 41 d6 44 80 ..w........A.D. 01a6fe58 03 01 00 00 b0 05 23 81 - 00 b0 fd 7f fc 07 30 c0 ......#.......0. 01a6fe68 02 00 00 00 00 00 00 00 - 03 01 00 00 00 00 00 00 ................ 01a6fe78 00 00 00 00 01 00 00 00 - 00 00 00 00 d3 02 00 00 ................ 01a6fe88 fc 07 30 c0 38 4c 05 bc - c8 d4 44 80 00 b0 fd 7f ..0.8L....D..... 01a6fe98 00 00 00 00 00 00 00 00 - 00 b0 fd 7f 48 14 39 81 ............H.9. 01a6fea8 01 06 23 81 00 00 00 00 - 6c ff 1f c0 41 d6 44 80 ..#.....l...A.D. 01a6feb8 12 01 00 00 b0 05 23 81 - 00 f0 b9 00 08 00 30 c0 ......#.......0. 01a6fec8 00 00 00 00 48 a8 9a e2 - 12 01 00 00 b9 b9 bc 62 ....H..........b 01a6fed8 00 00 00 00 01 00 00 00 - 00 00 00 00 00 00 ba 00 ................ 01a6fee8 08 00 30 c0 00 b0 fd 7f - c8 d4 44 80 00 f0 b9 00 ..0.......D..... 01a6fef8 00 00 00 00 00 b9 36 81 - 01 00 00 00 50 fa 5b 81 ......6.....P.[. 01a6ff08 60 cd 5e 81 e0 04 23 81 - e8 4c 00 e1 1b 55 45 80 `.^...#..L...UE. 01a6ff18 00 00 00 82 00 00 00 02 - 64 4c 05 bc 04 22 49 80 ........dL..."I. 01a6ff28 88 9c 89 81 c0 ab 24 81 - 20 c0 34 81 00 00 00 00 ......$. .4..... 01a6ff38 20 c0 34 81 b0 c1 34 81 - 64 4c 05 bc f3 da 42 80 .4...4.dL....B. 01a6ff48 a4 da 42 80 d4 4b 06 80 - 80 c1 34 81 00 00 02 80 ..B..K....4..... 01a6ff58 00 a2 2f 4d ff ff ff ff - 50 fe a6 01 00 00 02 80 ../M....P....... 线程 ID 0x390 的状态转储 eax=786f2778 ebx=80020000 ecx=000c2e60 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01abfe28 ebp=01abff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0261d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01ABFF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01ABFFA8 78701C6C 0007C208 01ABFFEC 77E687DD 000B1270 rpcrt4!TowerConstruct 01ABFFB4 77E687DD 000B1270 00000000 00000000 000B1270 rpcrt4!I_RpcServerInqTransportType 01ABFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x4b4 的状态转储 eax=02921230 ebx=000c6818 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=01afff84 ebp=01afffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:0265d557=???????? 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AFFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000C6818 ntdll!NtRemoveIoCompletion 01AFFFEC 00000000 74F54766 000C6818 00000000 01B000D4 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01afff84 b8 47 f5 74 24 03 00 00 - bc ff af 01 b0 ff af 01 .G.t$........... 01afff94 a4 ff af 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01afffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 50 d2 5b 04 ...........tP.[. 01afffb4 ec ff af 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01afffc4 00 00 00 00 18 68 0c 00 - 00 60 fd 7f 64 f7 9b 01 .....h...`..d... 01afffd4 c0 ff af 01 64 f7 9b 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01afffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01affff4 66 47 f5 74 18 68 0c 00 - 00 00 00 00 d4 00 b0 01 fG.t.h.......... 01b00004 00 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01b00014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01b00024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b00034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01b00044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 03 00 00 ................ 01b00054 01 10 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b00064 00 01 00 00 01 01 04 00 - 00 00 00 00 06 00 00 00 ................ 01b00074 00 00 01 03 00 00 03 00 - 00 0b 00 00 00 00 00 00 ................ 01b00084 00 00 00 00 01 03 00 00 - 03 00 00 21 00 00 00 00 ...........!.... 01b00094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b000a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 01b000b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x2f0 的状态转储 eax=0000003c ebx=01f5ff74 ecx=01dba641 edx=00000000 esi=77f88e68 edi=00000344 eip=77f88e73 esp=01f5ff58 ebp=01f5ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02abd52b=00000004 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F5FF7C 77E67837 00000344 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 63EF5400 00000004 63F3D400 00000004 00000000 00000000 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f5ff58 0f 78 e6 77 44 03 00 00 - 00 00 00 00 74 ff f5 01 .x.wD.......t... 01f5ff68 00 00 00 00 e0 1e b0 01 - 40 7e f8 77 00 44 5f 9a ........@~.w.D_. 01f5ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 44 03 00 00 .... ..w7x.wD... 01f5ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 44 03 00 00 .'......k..uD... 01f5ff98 c0 27 09 00 88 b0 06 00 - e0 1e b0 01 ec ff f5 01 .'.............. 01f5ffa8 e0 1e b0 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f5ffb8 dd 87 e6 77 e0 1e b0 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f5ffc8 e0 1e b0 01 00 50 fd 7f - 74 1c 00 00 c0 ff f5 01 .....P..t....... 01f5ffd8 74 1c 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 t.......V..w...w 01f5ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f5fff8 e0 1e b0 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ........LCDT.... 01f60008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 01f60018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 01f60028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 01f60038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 01f60048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 01f60058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 01f60068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 01f60078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01f60088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x468 的状态转储 eax=010884c0 ebx=0215ff74 ecx=048ee560 edx=00000000 esi=77f88e68 edi=00000380 eip=77f88e73 esp=0215ff58 ebp=0215ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02cbd52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0215FF7C 77E67837 00000380 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 63EF5400 00000004 63F3D400 00000004 00000000 00000000 00000000 00000000 00000000 00000000 00000000 线程 ID 0x398 的状态转储 eax=00000000 ebx=00000002 ecx=fffffff6 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0264fe5c ebp=0264fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:031ad42f=ffffff00 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0264FEA8 77DF2A00 0264FE80 00000001 00000000 0264FEA0 ntdll!NtWaitForMultipleObjects 0264FF04 77DF2A77 0264FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0264FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0264FF74 77C58FFD 0264FFA0 0264FFA4 0264FFA8 0264FF9C shlwapi!Ordinal271 0264FFAC 77C58F85 77FB64F4 77E687DD 00000000 0197FA10 shlwapi!Ordinal394 0264FFEC 00000000 77C58F5C 00000000 00000000 D8CBD0CA shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0264fe5c b7 7a e6 77 02 00 00 00 - 80 fe 64 02 01 00 00 00 .z.w......d..... 0264fe6c 00 00 00 00 a0 fe 64 02 - 00 00 00 00 00 00 00 00 ......d......... 0264fe7c 02 00 00 00 14 02 00 00 - ec 03 00 00 f0 f9 5b 04 ..............[. 0264fe8c 00 00 00 00 b0 aa 91 02 - 0f ee bc 76 10 28 0a 00 ...........v.(.. 0264fe9c 00 00 00 00 00 ba 3c dc - ff ff ff ff 04 ff 64 02 ......<.......d. 0264feac 00 2a df 77 80 fe 64 02 - 01 00 00 00 00 00 00 00 .*.w..d......... 0264febc a0 fe 64 02 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ..d.....`....A.w 0264fecc 00 00 00 00 14 02 00 00 - ec 03 00 00 00 00 00 00 ................ 0264fedc 00 00 00 00 30 ff 64 02 - 2b ee bc 76 e5 03 00 00 ....0.d.+..v.... 0264feec ee d0 bc 76 b0 aa 91 02 - 00 00 00 00 cc 36 fd 7f ...v.........6.. 0264fefc 00 00 00 00 ec 03 00 00 - 20 ff 64 02 77 2a df 77 ........ .d.w*.w 0264ff0c d0 fe 64 02 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 ..d..A.w`...A... 0264ff1c 00 00 00 00 74 ff 64 02 - ff 64 c5 77 01 00 00 00 ....t.d..d.w.... 0264ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0264ff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 b0 5d 94 02 .....A.w ..w.].. 0264ff4c 10 28 0a 00 b0 5d 94 02 - 01 00 00 00 49 d0 bc 76 .(...]......I..v 0264ff5c 10 28 0a 00 8c ff 64 02 - 8b 5c fc 05 a0 41 c9 77 .(....d..\...A.w 0264ff6c 60 ea 00 00 01 00 00 00 - ac ff 64 02 fd 8f c5 77 `.........d....w 0264ff7c a0 ff 64 02 a4 ff 64 02 - a8 ff 64 02 9c ff 64 02 ..d...d...d...d. 0264ff8c 60 ea 00 00 10 fa 97 01 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x3a4 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=028bff24 ebp=028bff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0341d4f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 028BFF70 77E6A31D 028BFF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 028BFFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 028BFFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 028bff24 b7 7a e6 77 02 00 00 00 - 48 ff 8b 02 01 00 00 00 .z.w....H....... 028bff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 028bff44 00 00 00 00 3c 04 00 00 - 38 04 00 00 c0 75 21 81 ....<...8....u!. 028bff54 60 74 21 81 00 8d 08 bc - 30 a2 49 80 64 8d 08 bc `t!.....0.I.d... 028bff64 4c fd 64 02 00 00 00 00 - 00 00 00 00 b4 ff 8b 02 L.d............. 028bff74 1d a3 e6 77 48 ff 8b 02 - 01 00 00 00 00 00 00 00 ...wH........... 028bff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 028bff94 a4 ff 8b 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 028bffa4 3c 04 00 00 38 04 00 00 - 00 00 00 00 00 00 00 00 <...8........... 028bffb4 ec ff 8b 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 028bffc4 00 00 00 00 00 00 00 00 - 00 f0 f9 7f 98 25 fb 77 .............%.w 028bffd4 c0 ff 8b 02 98 25 fb 77 - ff ff ff ff 56 18 e8 77 .....%.w....V..w 028bffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 028bfff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 028c0004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 028c0014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 028c0024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 028c0034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 028c0044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 028c0054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x328 的状态转储 eax=00000001 ebx=02b3ff70 ecx=00010101 edx=00000000 esi=77f88e68 edi=00000450 eip=77f88e73 esp=02b3ff54 ebp=02b3ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:0369d527=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02B3FF78 77E67837 00000450 00000002 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000002 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x498 的状态转储 eax=00143960 ebx=000004f4 ecx=02eefe84 edx=00000000 esi=02eeff98 edi=77df7c12 eip=77df1d6b esp=02eeff58 ebp=02eeff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03a4d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03a4d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03a4d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02EEFF78 77535C36 02EEFF98 00000000 00000000 00000000 user32!TranslateMessageEx 02EEFFB4 77E687DD 000004F4 77555428 000691BC 000004F4 winmm!midiOutGetNumDevs 02EEFFEC 00000000 77535BB9 000004F4 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02eeff58 4e 7c df 77 98 ff ee 02 - 00 00 00 00 00 00 00 00 N|.w............ 02eeff68 00 00 00 00 f4 04 00 00 - 00 00 00 00 12 7c df 77 .............|.w 02eeff78 b4 ff ee 02 36 5c 53 77 - 98 ff ee 02 00 00 00 00 ....6\Sw........ 02eeff88 00 00 00 00 00 00 00 00 - 28 54 55 77 bc 91 06 00 ........(TUw.... 02eeff98 06 02 1d 00 bc 03 00 00 - b4 e7 79 04 00 00 00 00 ..........y..... 02eeffa8 e5 19 fc 05 32 03 00 00 - 16 01 00 00 ec ff ee 02 ....2........... 02eeffb8 dd 87 e6 77 f4 04 00 00 - 28 54 55 77 bc 91 06 00 ...w....(TUw.... 02eeffc8 f4 04 00 00 00 d0 f9 7f - 00 00 53 77 c0 ff ee 02 ..........Sw.... 02eeffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 02eeffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 02eefff8 f4 04 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 ................ 02ef0008 03 00 00 00 7a 00 00 00 - 00 00 00 00 02 03 00 00 ....z........... 02ef0018 5c 02 00 00 5a 00 00 00 - 03 00 00 00 00 00 00 00 \...Z........... 02ef0028 30 0e ef 02 30 00 ef 02 - e0 f2 82 04 88 9a 5c 04 0...0.........\. 02ef0038 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ef0048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ef0058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ef0068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ef0078 00 00 00 00 00 00 00 00 - 00 00 00 00 e8 f9 5b 04 ..............[. 02ef0088 40 13 57 03 00 00 00 00 - 30 cd 7c 04 00 f1 79 04 @.W.....0.|...y. 线程 ID 0x47c 的状态转储 eax=0306fe8c ebx=00000002 ecx=0000003e edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0306fe5c ebp=0306fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03bcd42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0306FEA8 77DF2A00 0306FE80 00000001 00000000 0306FEA0 ntdll!NtWaitForMultipleObjects 0306FF04 77DF2A77 0306FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0306FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0306FF74 77C58FFD 0306FFA0 0306FFA4 0306FFA8 0306FF9C shlwapi!Ordinal271 0306FFAC 77C58F85 76BD1253 77E687DD 00000000 00067380 shlwapi!Ordinal394 0306FFEC 00000000 77C58F5C 00000000 00000000 EAA2C3E6 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0306fe5c b7 7a e6 77 02 00 00 00 - 80 fe 06 03 01 00 00 00 .z.w............ 0306fe6c 00 00 00 00 a0 fe 06 03 - 00 00 00 00 00 00 00 00 ................ 0306fe7c 02 00 00 00 14 02 00 00 - 5c 04 00 00 38 de 55 03 ........\...8.U. 0306fe8c 00 00 00 00 a0 7e 43 03 - 0f ee bc 76 e8 0b 0c 00 .....~C....v.... 0306fe9c 00 00 00 00 00 ba 3c dc - ff ff ff ff 04 ff 06 03 ......<......... 0306feac 00 2a df 77 80 fe 06 03 - 01 00 00 00 00 00 00 00 .*.w............ 0306febc a0 fe 06 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 0306fecc 00 00 00 00 14 02 00 00 - 5c 04 00 00 00 00 00 00 ........\....... 0306fedc 00 00 00 00 30 ff 06 03 - 2b ee bc 76 e5 03 00 00 ....0...+..v.... 0306feec ee d0 bc 76 a0 7e 43 03 - 00 00 00 00 cc c6 f9 7f ...v.~C......... 0306fefc 00 00 00 00 5c 04 00 00 - 20 ff 06 03 77 2a df 77 ....\... ...w*.w 0306ff0c d0 fe 06 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 0306ff1c 00 00 00 00 74 ff 06 03 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 0306ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0306ff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 28 ef 93 02 .....A.w ..w(... 0306ff4c e8 0b 0c 00 28 ef 93 02 - 01 00 00 00 49 d0 bc 76 ....(.......I..v 0306ff5c e8 0b 0c 00 8c ff 06 03 - 8b 5c fc 05 a0 41 c9 77 .........\...A.w 0306ff6c 60 ea 00 00 01 00 00 00 - ac ff 06 03 fd 8f c5 77 `..............w 0306ff7c a0 ff 06 03 a4 ff 06 03 - a8 ff 06 03 9c ff 06 03 ................ 0306ff8c 60 ea 00 00 80 73 06 00 - 00 00 c5 77 00 00 00 00 `....s.....w.... 线程 ID 0x450 的状态转储 eax=045c2208 ebx=00000002 ecx=00000000 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=030bfe5c ebp=030bfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03c1d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 030BFEA8 77DF2A00 030BFE80 00000001 00000000 030BFEA0 ntdll!NtWaitForMultipleObjects 030BFF04 77DF2A77 030BFED0 77C941C0 0000E8E9 00000041 user32!MsgWaitForMultipleObjectsEx 030BFF20 77C564FF 00000001 77C941C0 00000000 0000E8E9 user32!MsgWaitForMultipleObjects 030BFF74 77C58FFD 030BFFA0 030BFFA4 030BFFA8 030BFF9C shlwapi!Ordinal271 030BFFAC 77C58F85 76BD1253 77E687DD 00000000 01F5CF6C shlwapi!Ordinal394 030BFFEC 00000000 77C58F5C 00000000 00000000 0D1F0D0D shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 030bfe5c b7 7a e6 77 02 00 00 00 - 80 fe 0b 03 01 00 00 00 .z.w............ 030bfe6c 00 00 00 00 a0 fe 0b 03 - 00 00 00 00 00 00 00 00 ................ 030bfe7c 02 00 00 00 14 02 00 00 - 58 05 00 00 00 00 00 00 ........X....... 030bfe8c 00 00 00 00 b8 cc 5d 04 - ab 00 bd 76 98 a4 5b 04 ......]....v..[. 030bfe9c 68 ab 90 04 70 f2 75 dc - ff ff ff ff 04 ff 0b 03 h...p.u......... 030bfeac 00 2a df 77 80 fe 0b 03 - 01 00 00 00 00 00 00 00 .*.w............ 030bfebc a0 fe 0b 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 030bfecc 00 00 00 00 14 02 00 00 - 58 05 00 00 f4 64 fb 77 ........X....d.w 030bfedc 70 16 f8 77 30 ff 0b 03 - f0 fd bc 76 e5 03 00 00 p..w0......v.... 030bfeec ee d0 bc 76 50 c2 59 04 - 00 00 00 00 cc b6 f9 7f ...vP.Y......... 030bfefc 00 00 00 00 58 05 00 00 - 20 ff 0b 03 77 2a df 77 ....X... ...w*.w 030bff0c d0 fe 0b 03 c0 41 c9 77 - e9 e8 00 00 41 00 00 00 .....A.w....A... 030bff1c 00 00 00 00 74 ff 0b 03 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 030bff2c c0 41 c9 77 00 00 00 00 - e9 e8 00 00 41 00 00 00 .A.w........A... 030bff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 58 85 5c 04 .....A.w ..wX.\. 030bff4c 18 07 15 00 58 85 5c 04 - 01 00 00 00 49 d0 bc 76 ....X.\.....I..v 030bff5c 18 07 15 00 8c ff 0b 03 - 34 5b fc 05 a0 41 c9 77 ........4[...A.w 030bff6c e9 e8 00 00 00 00 00 00 - ac ff 0b 03 fd 8f c5 77 ...............w 030bff7c a0 ff 0b 03 a4 ff 0b 03 - a8 ff 0b 03 9c ff 0b 03 ................ 030bff8c 60 ea 00 00 6c cf f5 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x194 的状态转储 eax=00000000 ebx=00000002 ecx=0310fe00 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0310fe5c ebp=0310fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03c6d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0310FEA8 77DF2A00 0310FE80 00000001 00000000 0310FEA0 ntdll!NtWaitForMultipleObjects 0310FF04 77DF2A77 0310FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0310FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0310FF74 77C58FFD 0310FFA0 0310FFA4 0310FFA8 0310FF9C shlwapi!Ordinal271 0310FFAC 77C58F85 76BD1253 77E687DD 00000000 00067380 shlwapi!Ordinal394 0310FFEC 00000000 77C58F5C 00000000 00000000 04C40000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0310fe5c b7 7a e6 77 02 00 00 00 - 80 fe 10 03 01 00 00 00 .z.w............ 0310fe6c 00 00 00 00 a0 fe 10 03 - 00 00 00 00 00 00 00 00 ................ 0310fe7c 02 00 00 00 14 02 00 00 - 9c 05 00 00 48 13 57 03 ............H.W. 0310fe8c a8 7e 5b 03 48 13 57 03 - 78 01 07 00 40 13 57 03 .~[.H.W.x...@.W. 0310fe9c dc fe 10 03 00 ba 3c dc - ff ff ff ff 04 ff 10 03 ......<......... 0310feac 00 2a df 77 80 fe 10 03 - 01 00 00 00 00 00 00 00 .*.w............ 0310febc a0 fe 10 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 0310fecc 00 00 00 00 14 02 00 00 - 9c 05 00 00 20 ff 10 03 ............ ... 0310fedc f4 64 fb 77 70 16 f8 77 - ff ff ff ff 30 ff 10 03 .d.wp..w....0... 0310feec 82 73 e6 77 00 00 07 00 - 00 00 00 00 cc a6 f9 7f .s.w............ 0310fefc 00 00 00 00 9c 05 00 00 - 20 ff 10 03 77 2a df 77 ........ ...w*.w 0310ff0c d0 fe 10 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 0310ff1c 00 00 00 00 74 ff 10 03 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 0310ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0310ff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 c4 96 bc 76 .....A.w ..w...v 0310ff4c 01 00 00 00 68 4b 99 02 - 00 00 00 00 82 96 bc 76 ....hK.........v 0310ff5c 00 00 00 00 b4 d0 bc 76 - ab 5c fc 05 a0 41 c9 77 .......v.\...A.w 0310ff6c 60 ea 00 00 01 00 00 00 - ac ff 10 03 fd 8f c5 77 `..............w 0310ff7c a0 ff 10 03 a4 ff 10 03 - a8 ff 10 03 9c ff 10 03 ................ 0310ff8c 60 ea 00 00 80 73 06 00 - 00 00 c5 77 00 00 00 00 `....s.....w.... 线程 ID 0x220 的状态转储 eax=02930e00 ebx=80020000 ecx=7ff99000 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=03a7fe28 ebp=03a7ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:045dd3fb=00000000 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03A7FF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 03A7FFA8 78701C6C 0007C208 03A7FFEC 77E687DD 029B9618 rpcrt4!TowerConstruct 03A7FFB4 77E687DD 029B9618 00000000 00000000 029B9618 rpcrt4!I_RpcServerInqTransportType 03A7FFEC 00000000 78701C54 029B9618 00000000 FF0066FF kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 03a7fe28 d4 74 71 78 18 01 00 00 - 54 ff a7 03 00 00 00 00 .tqx....T....... 03a7fe38 80 58 9d 02 58 ff a7 03 - 90 c1 07 00 c8 3d 96 02 .X..X........=.. 03a7fe48 20 7f f8 77 41 d6 44 80 - ed 04 00 00 30 4e 5e 81 ..wA.D.....0N^. 03a7fe58 00 40 fd 7f fc 07 30 c0 - 00 00 00 00 fc 39 06 80 .@....0......9.. 03a7fe68 02 04 00 00 01 00 00 00 - 00 00 00 00 01 00 00 00 ................ 03a7fe78 00 00 00 00 00 50 fd 7f - fc 07 30 c0 d1 02 00 00 .....P....0..... 03a7fe88 c8 d4 44 80 00 40 fd 7f - 00 00 00 00 00 00 00 00 ..D..@.......... 03a7fe98 00 40 fd 7f 28 26 23 81 - 01 4e 5e 81 00 00 00 00 .@..(&#..N^..... 03a7fea8 50 ff 1f c0 41 d6 44 80 - ee 04 00 00 30 4e 5e 81 P...A.D.....0N^. 03a7feb8 00 f0 d9 00 0c 00 30 c0 - 18 22 48 80 e0 99 89 81 ......0.."H..... 03a7fec8 a0 58 89 81 25 26 43 80 - 10 22 48 80 a0 58 89 81 .X..%&C.."H..X.. 03a7fed8 3b 27 43 80 0a 00 00 00 - 50 fa 5b 81 00 40 fd 7f ;'C.....P.[..@.. 03a7fee8 00 b0 42 81 0a 00 00 00 - 0c 59 89 81 30 2c 5a bc ..B......Y..0,Z. 03a7fef8 c9 10 43 80 50 fa 5b 81 - 60 cd 5e 81 60 4d 5e 81 ..C.P.[.`.^.`M^. 03a7ff08 48 4d 00 e1 fc 39 06 80 - 46 02 00 00 00 00 00 00 HM...9..F....... 03a7ff18 ff ff ff ff 24 2c 5a bc - 6c 51 06 80 20 c0 45 81 ....$,Z.lQ.. .E. 03a7ff28 e0 d3 22 81 c0 ab 24 81 - e0 d3 22 81 00 00 00 00 .."...$..."..... 03a7ff38 e0 d3 22 81 70 d5 22 81 - 64 2c 5a bc f3 da 42 80 ..".p.".d,Z...B. 03a7ff48 a4 da 42 80 d4 4b 06 80 - 40 d5 22 81 00 00 02 80 ..B..K..@."..... 03a7ff58 00 a2 2f 4d ff ff ff ff - 50 fe a7 03 00 00 02 80 ../M....P....... 线程 ID 0x4ac 的状态转储 eax=00000001 ebx=00000000 ecx=01c7ec40 edx=00000000 esi=02903380 edi=00000000 eip=77df2268 esp=0440ee64 ebp=0440eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:04f6c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0440EEA8 76DF217C 001C0246 0440FFA4 029D4890 00000000 user32!WaitMessage 0440EF30 76DF1F65 029D4890 00070718 00000000 029D4890 browseui!Ordinal102 0440FFAC 76C66950 029D4890 77E687DD 029D4890 00070718 browseui!Ordinal102 0440FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0440ee64 92 23 df 76 a4 ff 40 04 - 90 48 9d 02 00 00 00 00 .#.v..@..H...... 0440ee74 7a 02 15 00 0f 00 00 00 - 00 00 00 00 00 00 00 00 z............... 0440ee84 1f 61 fc 05 26 03 00 00 - 73 00 00 00 48 51 07 00 .a..&...s...HQ.. 0440ee94 01 00 00 00 80 33 90 02 - 01 44 00 80 d8 4c 91 02 .....3...D...L.. 0440eea4 00 00 00 00 30 ef 40 04 - 7c 21 df 76 46 02 1c 00 ....0.@.|!.vF... 0440eeb4 a4 ff 40 04 90 48 9d 02 - 00 00 00 00 00 00 00 00 ..@..H.......... 0440eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0440eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0440eee4 f4 ee 40 04 a4 ff 40 04 - 00 00 00 00 00 00 00 00 ..@...@......... 0440eef4 00 00 00 00 00 00 00 00 - 20 ef 40 04 37 78 e6 77 ........ .@.7x.w 0440ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0440ef14 7f 1a f9 77 b4 ee 40 04 - 78 dd 06 00 dc ff 40 04 ...w..@.x.....@. 0440ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 40 04 Rz.vxi.v......@. 0440ef34 65 1f df 76 90 48 9d 02 - 18 07 07 00 00 00 00 00 e..v.H.......... 0440ef44 90 48 9d 02 00 00 00 00 - 00 00 00 00 00 00 00 00 .H.............. 0440ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0440ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0440ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0440ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0440ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x2b0 的状态转储 eax=049930d8 ebx=00000000 ecx=00000002 edx=00000000 esi=77f41bac edi=01010056 eip=37f02d10 esp=04992fa4 ebp=0499302c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: xe_ExtTextOut 37f02cf0 55 push ebp 37f02cf1 8bec mov ebp,esp 37f02cf3 6aff push 0xff 37f02cf5 68a0a1f037 push 0x37f0a1a0 37f02cfa 682050f037 push 0x37f05020 37f02cff 64a100000000 mov eax,fs:[00000000] fs:00000000=???????? 37f02d05 50 push eax 37f02d06 64892500000000 mov fs:[00000000],esp fs:00000000=???????? 37f02d0d 83ec78 sub esp,0x78 错误 ->37f02d10 53 push ebx 37f02d11 56 push esi 37f02d12 57 push edi 37f02d13 e8e8e3ffff call 37f01100 37f02d18 a1989df037 mov eax,[37f09d98] ds:37f09d98=00000001 37f02d1d 85c0 test eax,eax 37f02d1f 0f8460010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d25 8b5d1c mov ebx,[ebp+0x1c] ss:054f05fe=0000ff66 37f02d28 85db test ebx,ebx 37f02d2a 0f8455010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d30 8b7520 mov esi,[ebp+0x20] ss:054f05fe=0000ff66 37f02d33 83fe01 cmp esi,0x1 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0499302C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049930E8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049931A4 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993260 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 0499331C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049933D8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993494 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993550 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 0499360C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049936C8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993784 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993840 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049938FC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049939B8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993A74 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993B30 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993BEC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993CA8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993D64 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993E20 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993EDC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04993F98 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994054 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994110 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049941CC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994288 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994344 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994400 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049944BC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994578 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994634 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049946F0 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049947AC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994868 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994924 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049949E0 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994A9C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994B58 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994C14 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994CD0 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994D8C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994E48 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994F04 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04994FC0 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 0499507C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995138 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049951F4 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049952B0 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 0499536C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995428 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049954E4 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049955A0 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 0499565C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995718 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049957D4 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995890 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 0499594C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995A08 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995AC4 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995B80 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995C3C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995CF8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995DB4 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995E70 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995F2C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04995FE8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049960A4 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996160 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 0499621C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049962D8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996394 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996450 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 0499650C 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049965C8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996684 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996740 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049967FC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049968B8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996974 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996A30 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996AEC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996BA8 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996C64 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996D20 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996DDC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996E98 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04996F54 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04997010 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049970CC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04997188 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04997244 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04997300 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049973BC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04997478 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04997534 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049975F0 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049976AC 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04997768 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 04997824 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut 049978E0 37F02EAB 01010056 00000000 00000000 00000002 !xe_ExtTextOut *----> 原始堆栈转储 <----* 04992fa4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04992fb4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04992fc4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04992fd4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04992fe4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04992ff4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04993004 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04993014 00 00 00 00 f0 2b 99 04 - d8 30 99 04 20 50 f0 37 .....+...0.. P.7 04993024 a0 a1 f0 37 ff ff ff ff - e8 30 99 04 ab 2e f0 37 ...7.....0.....7 04993034 56 00 01 01 00 00 00 00 - 00 00 00 00 02 00 00 00 V............... 04993044 e8 eb 9c 04 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04993054 56 00 01 01 ac 1b f4 77 - 00 00 00 00 00 00 00 00 V......w........ 04993064 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04993074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04993084 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 04993094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049930a4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049930b4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049930c4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 049930d4 f0 2b 99 04 94 31 99 04 - 20 50 f0 37 a0 a1 f0 37 .+...1.. P.7...7 线程 ID 0x274 的状态转储 eax=0000003a ebx=00000000 ecx=00000005 edx=ed20fd64 esi=77f88e68 edi=0000015c eip=77f88e73 esp=0573e954 ebp=0573e978 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:0629bf27=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0573E978 77E67837 0000015C FFFFFFFF 00000000 76BC164A ntdll!NtWaitForSingleObject 0573E9B0 76BC503B 00000000 0573E9D8 76BC5028 00000000 kernel32!WaitForSingleObject 0573E9DC 76BC4F36 0573EBD0 00000000 00000000 0573EAB8 wininet!InternetQueryOptionA 0573EA78 75B3ED16 00000000 00000032 0573EAAC 0573EAA8 wininet!InternetQueryOptionA 0573EAB0 75B3EC97 01DDA9C0 75C687E8 00000000 0573EBD0 mshtml!MatchExactGetIDsOfNames 0573EAE0 75A9634A 00000000 01DB4810 01DDAC70 0356EFE8 mshtml!MatchExactGetIDsOfNames 0573EB44 75ADCA3C 01DDAC70 01DDAC70 00000000 02000001 mshtml! 0573EC48 75A9236E 00000020 01DDAC70 02000001 0573ED6C mshtml! 0573ED44 75A91F30 00000000 00000020 0043032C 02000001 mshtml! 0573ED70 77DF1D0A 0043032C 00000020 0043032C 02000001 mshtml! 0573ED90 77DF2BCC 75A91EE8 0043032C 00000020 0043032C user32!DispatchMessageW 0573EDAC 77DF2B84 00462BF0 00000020 0043032C 02000001 user32!MsgWaitForMultipleObjects 0573EDD4 77F91A7F 0573EDE4 00000018 00462BF0 00000020 user32!MsgWaitForMultipleObjects 0573EE20 77DF223E 0573EE74 00000000 00000000 00000000 ntdll!KiUserCallbackDispatcher 0573EE4C 76DF22F2 0573EE74 00000000 00000000 00000000 user32!PeekMessageW 0573EEA8 76DF217C 00230268 0573FFA4 045C2208 00000000 browseui!Ordinal102 0573EF30 76DF1F65 045C2208 00070718 00000000 045C2208 browseui!Ordinal102 0573FFAC 76C66950 045C2208 77E687DD 045C2208 00070718 browseui!Ordinal102 0573FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0573e954 0f 78 e6 77 5c 01 00 00 - 00 00 00 00 00 00 00 00 .x.w\........... 0573e964 ac e9 73 05 48 74 08 00 - 04 00 00 00 48 74 08 00 ..s.Ht......Ht.. 0573e974 48 74 08 00 b0 e9 73 05 - 37 78 e6 77 5c 01 00 00 Ht....s.7x.w\... 0573e984 ff ff ff ff 00 00 00 00 - 4a 16 bc 76 5c 01 00 00 ........J..v\... 0573e994 ff ff ff ff 32 00 00 00 - 48 74 08 00 16 17 bc 76 ....2...Ht.....v 0573e9a4 ac e9 73 05 00 00 00 00 - 00 00 00 00 dc e9 73 05 ..s...........s. 0573e9b4 3b 50 bc 76 00 00 00 00 - d8 e9 73 05 28 50 bc 76 ;P.v......s.(P.v 0573e9c4 00 00 00 00 d8 e9 73 05 - d7 4f bc 76 d8 e9 73 05 ......s..O.v..s. 0573e9d4 ac ea 73 05 00 00 00 00 - 78 ea 73 05 36 4f bc 76 ..s.....x.s.6O.v 0573e9e4 d0 eb 73 05 00 00 00 00 - 00 00 00 00 b8 ea 73 05 ..s...........s. 0573e9f4 20 57 6f 78 08 00 00 00 - 00 00 00 00 16 00 00 00 Wox............ 0573ea04 16 00 00 00 5c ea 73 05 - f4 64 fb 77 38 13 f8 77 ....\.s..d.w8..w 0573ea14 ff ff ff ff 6c ea 73 05 - c5 9c e6 77 01 00 00 00 ....l.s....w.... 0573ea24 00 00 00 00 7c ea 73 05 - 48 ea 73 05 d0 eb 73 05 ....|.s.H.s...s. 0573ea34 b0 fd 0e 00 00 00 00 00 - f8 7b f9 7f 00 00 00 00 .........{...... 0573ea44 6c ea 73 05 00 00 bc 76 - 00 7c f9 7f 16 00 00 00 l.s....v.|...... 0573ea54 30 ea 73 05 16 00 00 00 - 00 00 00 00 00 00 00 00 0.s............. 0573ea64 00 00 00 00 ff ff ff ff - 00 00 00 00 88 9c e6 77 ...............w 0573ea74 00 00 00 00 b0 ea 73 05 - 16 ed b3 75 00 00 00 00 ......s....u.... 0573ea84 32 00 00 00 ac ea 73 05 - a8 ea 73 05 db ec b3 75 2.....s...s....u 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1188) 时间: 2003-9-14 @ 22:17:59.531 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 604 svchost.exe 800 Explorer.exe 832 Rundll32.exe 1044 daemon.exe 1052 RealPlay.exe 1076 internat.exe 1084 AcroTray.exe 884 XDICT.exe 916 wuauclt.exe 1188 iexplore.exe 936 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (75D80000 - 75DF7000) (02610000 - 0279D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (75A40000 - 75A48000) (72750000 - 72759000) (51000000 - 51044000) (72800000 - 72806000) (68EF0000 - 68F0F000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (751C0000 - 751D5000) (6DDA0000 - 6DDAA000) 线程 ID 0x3fc 的状态转储 eax=00000000 ebx=00000000 ecx=00000007 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 002C0122 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 48 01 35 00 02 80 00 00 - 00 00 00 00 00 00 00 00 H.5............. 0006dd68 ab 0d fd 05 ad 01 00 00 - 41 01 00 00 00 00 00 00 ........A....... 0006dd78 02 00 00 00 18 ac 07 00 - 01 44 00 80 48 51 07 00 .........D..HQ.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 22 01 2c 00 ........|!.v".,. 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x274 的状态转储 eax=00000000 ebx=80020000 ecx=028d5de8 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 78716D9E 786F9AD0 0007E3A0 4007DEBC 00000070 ntdll!ZwReplyWaitReceivePortEx 00BCFFA8 78701C6C 0007C208 00BCFFEC 77E687DD 0007D050 rpcrt4!TowerConstruct 00BCFFB4 77E687DD 0007D050 4007DEBC 00000070 0007D050 rpcrt4!I_RpcServerInqTransportType 00BCFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x2b0 的状态转储 eax=77a94639 ebx=00000102 ecx=0007d360 edx=00000000 esi=77f882f8 edi=00c0ff74 eip=77f88303 esp=00c0ff60 ebp=00c0ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0176d533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00C0FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 00c0ff60 17 76 e6 77 00 00 00 00 - 74 ff c0 00 b5 77 e6 77 .v.w....t....w.w 00c0ff70 98 09 08 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 ......<.....0u.. 00c0ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 00c0ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 00c0ffa0 98 09 08 00 ec ff c0 00 - 98 09 08 00 53 46 a9 77 ............SF.w 00c0ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 98 09 08 00 .z.w.z.w...w.... 00c0ffc0 d8 7a a4 77 c3 7a a4 77 - 98 09 08 00 00 c0 fd 7f .z.w.z.w........ 00c0ffd0 60 d3 07 00 c0 ff c0 00 - 60 d3 07 00 ff ff ff ff `.......`....... 00c0ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 00c0fff0 00 00 00 00 39 46 a9 77 - 98 09 08 00 00 00 00 00 ....9F.w........ 00c10000 01 00 00 00 88 d3 07 00 - 01 00 00 00 d0 d3 07 00 ................ 00c10010 01 00 00 00 70 62 09 00 - 01 00 00 00 88 41 0a 00 ....pb.......A.. 00c10020 01 00 00 00 60 c1 07 00 - 01 00 00 00 c0 9d 08 00 ....`........... 00c10030 01 00 00 00 50 00 8d 02 - 40 00 c1 00 00 00 00 00 ....P...@....... 00c10040 48 00 c1 00 00 00 00 00 - 50 00 c1 00 00 00 00 00 H.......P....... 00c10050 58 00 c1 00 00 00 00 00 - 60 00 c1 00 00 00 00 00 X.......`....... 00c10060 68 00 c1 00 00 00 00 00 - 70 00 c1 00 00 00 00 00 h.......p....... 00c10070 78 00 c1 00 00 00 00 00 - 80 00 c1 00 00 00 00 00 x............... 00c10080 88 00 c1 00 00 00 00 00 - 90 00 c1 00 00 00 00 00 ................ 00c10090 98 00 c1 00 00 00 00 00 - a0 00 c1 00 00 00 00 00 ................ 线程 ID 0x4ac 的状态转储 eax=00091ce8 ebx=77f88e68 ecx=0197fbc0 edx=00000000 esi=00000000 edi=00000001 eip=77f88e73 esp=0197facc ebp=0197fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:024dd09f=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FB04 74F57EE6 00000224 00000228 00000001 00000004 ntdll!NtWaitForSingleObject 0197FBF0 74FB1DA9 00000002 0197FE84 0197FC7C 0197FD80 msafd!WSPSetSockOpt 0197FC54 76BD6F2E 00000002 0197FE84 0197FC7C 0197FD80 ws2_32!select 0197FFB0 76BD6E24 77E687DD 000A2C20 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0197FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0197facc 62 bb f5 74 24 02 00 00 - 01 00 00 00 f0 fa 97 01 b..t$........... 0197fadc 84 fe 97 01 78 fb 97 01 - 68 fb 97 01 01 00 00 00 ....x...h....... 0197faec 00 00 00 00 c0 b4 b3 ff - ff ff ff ff e8 1c 09 00 ................ 0197fafc 00 00 00 00 00 00 00 00 - f0 fb 97 01 e6 7e f5 74 .............~.t 0197fb0c 24 02 00 00 28 02 00 00 - 01 00 00 00 04 00 00 00 $...(........... 0197fb1c 80 fd 97 01 20 48 0a 00 - 7c fc 97 01 50 7c 7a ff .... H..|...P|z. 0197fb2c ff ff ff ff 00 0a b9 56 - ff ff ff ff e8 1c 09 00 .......V........ 0197fb3c 24 02 00 00 00 00 00 00 - 00 00 07 00 01 00 00 00 $............... 0197fb4c 00 00 00 00 a0 00 00 00 - 03 01 00 00 00 00 00 00 ................ 0197fb5c 06 00 00 00 50 7c 7a ff - ff ff ff ff 50 86 33 56 ....P|z.....P.3V 0197fb6c ff ff ff ff 03 00 00 00 - 00 fb 97 01 28 02 00 00 ............(... 0197fb7c 19 00 00 00 30 00 00 00 - d4 05 00 00 04 00 00 00 ....0........... 0197fb8c a0 41 c9 77 d4 05 00 00 - 02 01 00 00 48 16 f8 77 .A.w........H..w 0197fb9c ff ff ff ff ec fb 97 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 0197fbac e8 1c 09 00 24 00 00 00 - 01 00 00 00 68 fb 97 01 ....$.......h... 0197fbbc 44 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 D............... 0197fbcc 00 00 00 00 1c 00 00 00 - 9c fb 97 01 1c fb 97 01 ................ 0197fbdc 24 fc 97 01 44 fc 97 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0197fbec ff ff ff ff 54 fc 97 01 - a9 1d fb 74 02 00 00 00 ....T......t.... 0197fbfc 84 fe 97 01 7c fc 97 01 - 80 fd 97 01 90 ff 97 01 ....|........... 线程 ID 0x220 的状态转储 eax=00000011 ebx=00000002 ecx=000a4c88 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=019bfe5c ebp=019bfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0251d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019BFEA8 77DF2A00 019BFE80 00000001 00000000 019BFEA0 ntdll!NtWaitForMultipleObjects 019BFF04 77DF2A77 019BFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 019BFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 019BFF74 77C58FFD 019BFFA0 019BFFA4 019BFFA8 019BFF9C shlwapi!Ordinal271 019BFFAC 77C58F85 76BD1253 77E687DD 00000000 00070178 shlwapi!Ordinal394 019BFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x194 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffda000 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=019ffd24 ebp=019ffd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0255d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFD70 77E6A31D 019FFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 019FFFB4 77E687DD 00000005 000A4684 7FFDA000 000A54B0 kernel32!WaitForMultipleObjects 019FFFEC 00000000 777F21FE 000A54B0 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 019ffd24 b7 7a e6 77 04 00 00 00 - 48 fd 9f 01 01 00 00 00 .z.w....H....... 019ffd34 00 00 00 00 00 00 00 00 - 01 00 00 00 b0 54 0a 00 .............T.. 019ffd44 01 00 00 00 44 02 00 00 - 48 02 00 00 58 02 00 00 ....D...H...X... 019ffd54 10 03 00 00 e2 7b 41 80 - 00 00 00 00 60 d9 46 80 .....{A.....`.F. 019ffd64 88 4e 82 e2 90 6a 4a bc - 2b e7 49 80 b4 ff 9f 01 .N...jJ.+.I..... 019ffd74 1d a3 e6 77 48 fd 9f 01 - 01 00 00 00 00 00 00 00 ...wH........... 019ffd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 019ffd94 b0 fe 9f 01 00 00 00 00 - ff ff ff ff b0 54 0a 00 .............T.. 019ffda4 00 a0 fd 7f 84 46 0a 00 - 00 00 00 00 e0 6b 4a bc .....F.......kJ. 019ffdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 019ffdc4 23 00 00 00 23 00 00 00 - 84 46 0a 00 00 a0 fd 7f #...#....F...... 019ffdd4 b0 54 0a 00 00 a0 fd 7f - 00 a0 fd 7f fe 21 7f 77 .T...........!.w 019ffde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 019ffdf4 fc ff 9f 01 23 00 00 00 - 02 00 01 00 00 00 00 00 ....#........... 019ffe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffe14 00 03 00 00 00 00 00 00 - be 93 fc 77 ab a0 f8 77 ...........w...w 019ffe24 80 24 00 00 00 9c 90 81 - 00 07 00 00 ae cc 44 80 .$............D. 019ffe34 80 24 00 00 00 9c 90 81 - 80 24 00 00 00 9c 90 81 .$.......$...... 019ffe44 01 62 f9 7f d6 18 00 00 - 41 d6 44 80 d6 18 00 00 .b......A.D..... 019ffe54 90 ac 24 81 00 60 f9 7f - fc 07 30 c0 00 00 00 00 ..$..`....0..... 线程 ID 0x47c 的状态转储 eax=0007a5b0 ebx=80020000 ecx=0007a4b8 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01a6fe28 ebp=01a6ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:025cd3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A6FF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01A6FFA8 78701C6C 0007C208 01A6FFEC 77E687DD 000A8850 rpcrt4!TowerConstruct 01A6FFB4 77E687DD 000A8850 00000000 00000000 000A8850 rpcrt4!I_RpcServerInqTransportType 01A6FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x498 的状态转储 eax=000f0268 ebx=77f87f20 ecx=000a3a38 edx=00000000 esi=000b0df8 edi=0007c190 eip=77f88303 esp=01aaff78 ebp=01aaffa8 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0260d54b=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AAFFA8 78701C6C 0007C208 01AAFFEC 77E687DD 000B3320 ntdll!NtDelayExecution 01AAFFB4 77E687DD 000B3320 00000000 00000000 000B3320 rpcrt4!I_RpcServerInqTransportType 01AAFFEC 00000000 78701C54 000B3320 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01aaff78 74 9a 6f 78 01 00 00 00 - 90 ff aa 01 00 00 00 00 t.ox............ 01aaff88 00 00 00 00 20 33 0b 00 - 00 5d 1e ee ff ff ff ff .... 3...]...... 01aaff98 00 5d 1e ee ff ff ff ff - 30 75 00 00 20 33 0b 00 .]......0u.. 3.. 01aaffa8 b4 ff aa 01 6c 1c 70 78 - 08 c2 07 00 ec ff aa 01 ....l.px........ 01aaffb8 dd 87 e6 77 20 33 0b 00 - 00 00 00 00 00 00 00 00 ...w 3.......... 01aaffc8 20 33 0b 00 00 70 fd 7f - 00 00 00 00 c0 ff aa 01 3...p.......... 01aaffd8 00 00 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01aaffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 54 1c 70 78 ............T.px 01aafff8 20 33 0b 00 00 00 00 00 - c8 00 00 00 00 01 00 00 3.............. 01ab0008 ff ee ff ee 02 10 00 00 - 00 00 00 00 00 fe 00 00 ................ 01ab0018 00 00 10 00 00 20 00 00 - 00 02 00 00 00 20 00 00 ..... ....... .. 01ab0028 1e 14 00 00 ff ef fd 7f - 0b 00 08 06 00 00 00 00 ................ 01ab0038 00 00 00 00 00 00 00 00 - 00 00 00 00 98 05 ab 01 ................ 01ab0048 0f 00 00 00 f8 ff ff ff - 50 00 ab 01 50 00 ab 01 ........P...P... 01ab0058 40 06 ab 01 00 00 00 00 - 00 00 00 00 00 00 00 00 @............... 01ab0068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab0078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab0088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab0098 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab00a8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x328 的状态转储 eax=00000000 ebx=000c7f48 ecx=7ffd6000 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=01afff84 ebp=01afffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:0265d557=ff70818d 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AFFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000C7F48 ntdll!NtRemoveIoCompletion 01AFFFEC 00000000 74F54766 000C7F48 00000000 01B000D0 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01afff84 b8 47 f5 74 20 03 00 00 - bc ff af 01 b0 ff af 01 .G.t ........... 01afff94 a4 ff af 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01afffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 78 b0 99 02 ...........tx... 01afffb4 ec ff af 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01afffc4 00 00 00 00 48 7f 0c 00 - 00 60 fd 7f 64 f7 9b 01 ....H....`..d... 01afffd4 c0 ff af 01 64 f7 9b 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01afffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01affff4 66 47 f5 74 48 7f 0c 00 - 00 00 00 00 d0 00 b0 01 fG.tH........... 01b00004 00 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01b00014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01b00024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b00034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01b00044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 03 00 00 ................ 01b00054 01 0a 00 00 00 00 00 00 - 00 00 00 03 00 00 04 00 ................ 01b00064 00 00 02 00 01 01 02 00 - 04 00 00 00 06 00 00 00 ................ 01b00074 00 00 01 04 00 00 00 00 - 00 0b 00 00 00 00 00 00 ................ 01b00084 00 00 00 00 01 03 00 00 - 03 00 00 21 00 00 00 00 ...........!.... 01b00094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01b000a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 08 00 00 ................ 01b000b4 00 00 00 00 00 01 02 00 - 05 00 00 00 00 01 02 00 ................ 线程 ID 0x3a4 的状态转储 eax=7ffa0002 ebx=01f5ff74 ecx=7ffa003a edx=00000000 esi=77f88e68 edi=00000344 eip=77f88e73 esp=01f5ff58 ebp=01f5ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02abd52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F5FF7C 77E67837 00000344 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f5ff58 0f 78 e6 77 44 03 00 00 - 00 00 00 00 74 ff f5 01 .x.wD.......t... 01f5ff68 00 00 00 00 e0 1e b0 01 - 40 7e f8 77 00 44 5f 9a ........@~.w.D_. 01f5ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 44 03 00 00 .... ..w7x.wD... 01f5ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 44 03 00 00 .'......k..uD... 01f5ff98 c0 27 09 00 88 b0 06 00 - e0 1e b0 01 ec ff f5 01 .'.............. 01f5ffa8 e0 1e b0 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f5ffb8 dd 87 e6 77 e0 1e b0 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f5ffc8 e0 1e b0 01 00 50 fd 7f - 74 1c 00 00 c0 ff f5 01 .....P..t....... 01f5ffd8 74 1c 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 t.......V..w...w 01f5ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f5fff8 e0 1e b0 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ........LCDT.... 01f60008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 01f60018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 01f60028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 01f60038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 01f60048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 01f60058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 01f60068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 01f60078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01f60088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x398 的状态转储 eax=0219ef01 ebx=0215ff74 ecx=03426200 edx=00000000 esi=77f88e68 edi=00000380 eip=77f88e73 esp=0215ff58 ebp=0215ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02cbd52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0215FF7C 77E67837 00000380 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x468 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0286ff24 ebp=0286ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:033cd4f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0286FF70 77E6A31D 0286FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0286FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0286FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0286ff24 b7 7a e6 77 02 00 00 00 - 48 ff 86 02 01 00 00 00 .z.w....H....... 0286ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0286ff44 00 00 00 00 38 04 00 00 - 34 04 00 00 00 73 21 81 ....8...4....s!. 0286ff54 a0 71 21 81 85 26 40 80 - 70 8c 06 bc 00 00 00 00 .q!..&@.p....... 0286ff64 a0 71 21 81 00 00 00 00 - 00 00 00 00 b4 ff 86 02 .q!............. 0286ff74 1d a3 e6 77 48 ff 86 02 - 01 00 00 00 00 00 00 00 ...wH........... 0286ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0286ff94 a4 ff 86 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 0286ffa4 38 04 00 00 34 04 00 00 - 00 00 00 00 00 00 00 00 8...4........... 0286ffb4 ec ff 86 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 0286ffc4 00 00 00 00 00 00 00 00 - 00 30 fd 7f 98 25 fb 77 .........0...%.w 0286ffd4 c0 ff 86 02 98 25 fb 77 - ff ff ff ff 56 18 e8 77 .....%.w....V..w 0286ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0286fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02870004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02870014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02870024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02870034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02870044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02870054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x2f0 的状态转储 eax=7ff9f000 ebx=02aeff70 ecx=7ff9f000 edx=00000000 esi=77f88e68 edi=0000044c eip=77f88e73 esp=02aeff54 ebp=02aeff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:0364d527=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02AEFF78 77E67837 0000044C 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x4b4 的状态转储 eax=000094fe ebx=00000001 ecx=00230004 edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=02e5fe60 ebp=02e5feac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:039bd433=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02E5FEAC 77DF2A00 02E5FE84 00000001 00000000 02E5FEA4 ntdll!NtWaitForMultipleObjects 02E5FF08 77DF2A77 02E5FED4 00000000 0000EA60 000000FF user32!MsgWaitForMultipleObjectsEx 02E5FF24 76DD9CD1 00000000 00000000 00000000 0000EA60 user32!MsgWaitForMultipleObjects 00090880 00000002 000903D0 00000001 000004B4 000004A8 browseui!DllGetClassObject *----> 原始堆栈转储 <----* 02e5fe60 b7 7a e6 77 01 00 00 00 - 84 fe e5 02 01 00 00 00 .z.w............ 02e5fe70 00 00 00 00 a4 fe e5 02 - 00 00 00 00 00 00 00 00 ................ 02e5fe80 01 00 00 00 e0 03 00 00 - 00 04 00 00 60 ff e5 02 ............`... 02e5fe90 06 04 00 00 88 fe e5 02 - f0 fe e5 02 dc ff e5 02 ................ 02e5fea0 38 27 e4 77 00 ba 3c dc - ff ff ff ff 08 ff e5 02 8'.w..<......... 02e5feb0 00 2a df 77 84 fe e5 02 - 01 00 00 00 00 00 00 00 .*.w............ 02e5fec0 a4 fe e5 02 00 00 00 00 - 00 04 00 00 08 2f c5 77 ............./.w 02e5fed0 06 04 00 00 e0 03 00 00 - e0 fe e5 02 30 00 00 00 ............0... 02e5fee0 00 00 03 00 01 00 00 00 - fc 1f 00 10 80 7c df 77 .............|.w 02e5fef0 00 00 00 00 04 04 00 00 - 00 00 00 00 cc e6 f9 7f ................ 02e5ff00 00 00 00 00 e0 03 00 00 - 24 ff e5 02 77 2a df 77 ........$...w*.w 02e5ff10 d4 fe e5 02 00 00 00 00 - 60 ea 00 00 ff 00 00 00 ........`....... 02e5ff20 00 00 00 00 80 08 09 00 - d1 9c dd 76 00 00 00 00 ...........v.... 02e5ff30 00 00 00 00 00 00 00 00 - 60 ea 00 00 ff 00 00 00 ........`....... 02e5ff40 80 08 09 00 00 00 00 00 - ac ff e5 02 20 7f f8 77 ............ ..w 02e5ff50 01 00 00 00 60 ea 00 00 - fe ff ff ff 00 00 00 00 ....`........... 02e5ff60 00 00 00 00 04 04 00 00 - 00 00 00 00 00 00 00 00 ................ 02e5ff70 e9 cc fc 05 91 00 00 00 - 63 00 00 00 96 9b dd 76 ........c......v 02e5ff80 00 00 00 00 a0 41 c9 77 - 13 90 c5 77 80 08 09 00 .....A.w...w.... 02e5ff90 00 00 00 00 00 00 c5 77 - 00 00 00 00 0c 00 00 00 .......w........ 线程 ID 0x3c8 的状态转储 eax=00000012 ebx=000004e8 ecx=0360d438 edx=00000000 esi=02edff98 edi=77df7c12 eip=77df1d6b esp=02edff58 ebp=02edff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03a3d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03a3d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03a3d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02EDFF78 77535C36 02EDFF98 00000000 00000000 00000000 user32!TranslateMessageEx 02EDFFB4 77E687DD 000004E8 77555428 000691BC 000004E8 winmm!midiOutGetNumDevs 02EDFFEC 00000000 77535BB9 000004E8 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02edff58 4e 7c df 77 98 ff ed 02 - 00 00 00 00 00 00 00 00 N|.w............ 02edff68 00 00 00 00 e8 04 00 00 - 00 00 00 00 12 7c df 77 .............|.w 02edff78 b4 ff ed 02 36 5c 53 77 - 98 ff ed 02 00 00 00 00 ....6\Sw........ 02edff88 00 00 00 00 00 00 00 00 - 28 54 55 77 bc 91 06 00 ........(TUw.... 02edff98 7c 02 24 00 bc 03 00 00 - 04 f8 99 02 00 00 00 00 |.$............. 02edffa8 05 0c fd 05 54 00 00 00 - 67 01 00 00 ec ff ed 02 ....T...g....... 02edffb8 dd 87 e6 77 e8 04 00 00 - 28 54 55 77 bc 91 06 00 ...w....(TUw.... 02edffc8 e8 04 00 00 00 d0 f9 7f - 00 00 53 77 c0 ff ed 02 ..........Sw.... 02edffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 02edffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 02edfff8 e8 04 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 ................ 02ee0008 08 00 00 00 11 00 00 00 - 00 00 00 00 c6 01 00 00 ................ 02ee0018 00 01 00 00 2d 00 00 00 - 02 00 00 00 00 00 00 00 ....-........... 02ee0028 30 0e ee 02 30 00 ee 02 - 00 00 00 00 f8 6b 97 02 0...0........k.. 02ee0038 00 00 00 00 80 75 92 02 - 00 00 00 00 00 00 00 00 .....u.......... 02ee0048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ee0058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ee0068 00 00 00 00 00 00 00 00 - 18 b8 8d 02 00 00 00 00 ................ 02ee0078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ee0088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x390 的状态转储 eax=fdfffeff ebx=00000002 ecx=000e8a3c edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0306fe5c ebp=0306fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03bcd42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0306FEA8 77DF2A00 0306FE80 00000001 00000000 0306FEA0 ntdll!NtWaitForMultipleObjects 0306FF04 77DF2A77 0306FED0 77C941C0 0000E9D3 00000041 user32!MsgWaitForMultipleObjectsEx 0306FF20 77C564FF 00000001 77C941C0 00000000 0000E9D3 user32!MsgWaitForMultipleObjects 0306FF74 77C58FFD 0306FFA0 0306FFA4 0306FFA8 0306FF9C shlwapi!Ordinal271 0306FFAC 77C58F85 76BD1253 77E687DD 00000000 00067380 shlwapi!Ordinal394 0306FFEC 00000000 77C58F5C 00000000 00000000 EAA2C3E6 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0306fe5c b7 7a e6 77 02 00 00 00 - 80 fe 06 03 01 00 00 00 .z.w............ 0306fe6c 00 00 00 00 a0 fe 06 03 - 00 00 00 00 00 00 00 00 ................ 0306fe7c 02 00 00 00 10 02 00 00 - 18 05 00 00 00 00 00 00 ................ 0306fe8c 00 00 00 00 00 00 15 00 - ab 00 bd 76 08 df 8c 02 ...........v.... 0306fe9c 10 98 0b 00 d0 3d 52 dc - ff ff ff ff 04 ff 06 03 .....=R......... 0306feac 00 2a df 77 80 fe 06 03 - 01 00 00 00 00 00 00 00 .*.w............ 0306febc a0 fe 06 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 0306fecc 00 00 00 00 10 02 00 00 - 18 05 00 00 f4 64 fb 77 .............d.w 0306fedc 70 16 f8 77 30 ff 06 03 - f0 fd bc 76 e5 03 00 00 p..w0......v.... 0306feec ee d0 bc 76 50 b7 42 03 - 00 00 00 00 cc c6 f9 7f ...vP.B......... 0306fefc 00 00 00 00 18 05 00 00 - 20 ff 06 03 77 2a df 77 ........ ...w*.w 0306ff0c d0 fe 06 03 c0 41 c9 77 - d3 e9 00 00 41 00 00 00 .....A.w....A... 0306ff1c 00 00 00 00 74 ff 06 03 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 0306ff2c c0 41 c9 77 00 00 00 00 - d3 e9 00 00 41 00 00 00 .A.w........A... 0306ff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 00 95 94 02 .....A.w ..w.... 0306ff4c f8 4d 0b 00 00 95 94 02 - 01 00 00 00 49 d0 bc 76 .M..........I..v 0306ff5c f8 4d 0b 00 8c ff 06 03 - 88 0b fd 05 a0 41 c9 77 .M...........A.w 0306ff6c d3 e9 00 00 00 00 00 00 - ac ff 06 03 fd 8f c5 77 ...............w 0306ff7c a0 ff 06 03 a4 ff 06 03 - a8 ff 06 03 9c ff 06 03 ................ 0306ff8c 60 ea 00 00 80 73 06 00 - 00 00 c5 77 00 00 00 00 `....s.....w.... 线程 ID 0x314 的状态转储 eax=030bf61c ebx=00000002 ecx=00000000 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=030bfe5c ebp=030bfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03c1d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 030BFEA8 77DF2A00 030BFE80 00000001 00000000 030BFEA0 ntdll!NtWaitForMultipleObjects 030BFF04 77DF2A77 030BFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 030BFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 030BFF74 77C58FFD 030BFFA0 030BFFA4 030BFFA8 030BFF9C shlwapi!Ordinal271 030BFFAC 77C58F85 76BD1253 77E687DD 00000000 01F5CF6C shlwapi!Ordinal394 030BFFEC 00000000 77C58F5C 00000000 00000000 0D1F0D0D shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 030bfe5c b7 7a e6 77 02 00 00 00 - 80 fe 0b 03 01 00 00 00 .z.w............ 030bfe6c 00 00 00 00 a0 fe 0b 03 - 00 00 00 00 00 00 00 00 ................ 030bfe7c 02 00 00 00 10 02 00 00 - 4c 05 00 00 00 00 00 00 ........L....... 030bfe8c cc fe 0b 03 80 e5 0a 00 - c5 1b bd 76 01 00 00 00 ...........v.... 030bfe9c 78 cd 12 00 00 ba 3c dc - ff ff ff ff 04 ff 0b 03 x.....<......... 030bfeac 00 2a df 77 80 fe 0b 03 - 01 00 00 00 00 00 00 00 .*.w............ 030bfebc a0 fe 0b 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 030bfecc 00 00 00 00 10 02 00 00 - 4c 05 00 00 f4 64 fb 77 ........L....d.w 030bfedc 70 16 f8 77 ff ff ff ff - 2c ff 0b 03 82 73 e6 77 p..w....,....s.w 030bfeec 00 00 07 00 00 00 00 00 - 00 00 00 00 cc b6 f9 7f ................ 030bfefc 00 00 00 00 4c 05 00 00 - 20 ff 0b 03 77 2a df 77 ....L... ...w*.w 030bff0c d0 fe 0b 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 030bff1c 00 00 00 00 74 ff 0b 03 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 030bff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 030bff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 a1 96 bc 76 .....A.w ..w...v 030bff4c c8 e5 0a 00 c0 0f 14 00 - 00 00 00 00 82 96 bc 76 ...............v 030bff5c 00 00 00 00 b4 d0 bc 76 - ab 0d fd 05 a0 41 c9 77 .......v.....A.w 030bff6c 60 ea 00 00 01 00 00 00 - ac ff 0b 03 fd 8f c5 77 `..............w 030bff7c a0 ff 0b 03 a4 ff 0b 03 - a8 ff 0b 03 9c ff 0b 03 ................ 030bff8c 60 ea 00 00 6c cf f5 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x2a0 的状态转储 eax=0291a250 ebx=00000002 ecx=0310fd3c edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0310fe5c ebp=0310fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03c6d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0310FEA8 77DF2A00 0310FE80 00000001 00000000 0310FEA0 ntdll!NtWaitForMultipleObjects 0310FF04 77DF2A77 0310FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0310FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0310FF74 77C58FFD 0310FFA0 0310FFA4 0310FFA8 0310FF9C shlwapi!Ordinal271 0310FFAC 77C58F85 76BD1253 77E687DD 00000000 00067380 shlwapi!Ordinal394 0310FFEC 00000000 77C58F5C 00000000 00000000 00070050 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 0310fe5c b7 7a e6 77 02 00 00 00 - 80 fe 10 03 01 00 00 00 .z.w............ 0310fe6c 00 00 00 00 a0 fe 10 03 - 00 00 00 00 00 00 00 00 ................ 0310fe7c 02 00 00 00 10 02 00 00 - 84 05 00 00 00 00 00 00 ................ 0310fe8c cc fe 10 03 20 b8 8d 02 - c5 1b bd 76 01 00 00 00 .... ......v.... 0310fe9c d8 21 07 00 00 ba 3c dc - ff ff ff ff 04 ff 10 03 .!....<......... 0310feac 00 2a df 77 80 fe 10 03 - 01 00 00 00 00 00 00 00 .*.w............ 0310febc a0 fe 10 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 0310fecc 00 00 00 00 10 02 00 00 - 84 05 00 00 f4 64 fb 77 .............d.w 0310fedc 70 16 f8 77 ff ff ff ff - 2c ff 10 03 82 73 e6 77 p..w....,....s.w 0310feec 00 00 07 00 00 00 00 00 - 00 00 00 00 cc a6 f9 7f ................ 0310fefc 00 00 00 00 84 05 00 00 - 20 ff 10 03 77 2a df 77 ........ ...w*.w 0310ff0c d0 fe 10 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 0310ff1c 00 00 00 00 74 ff 10 03 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 0310ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 0310ff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 a1 96 bc 76 .....A.w ..w...v 0310ff4c 68 b8 8d 02 30 91 8c 02 - 00 00 00 00 82 96 bc 76 h...0..........v 0310ff5c 00 00 00 00 b4 d0 bc 76 - ab 0d fd 05 a0 41 c9 77 .......v.....A.w 0310ff6c 60 ea 00 00 01 00 00 00 - ac ff 10 03 fd 8f c5 77 `..............w 0310ff7c a0 ff 10 03 a4 ff 10 03 - a8 ff 10 03 9c ff 10 03 ................ 0310ff8c 60 ea 00 00 80 73 06 00 - 00 00 c5 77 00 00 00 00 `....s.....w.... 线程 ID 0x4b8 的状态转储 eax=03ffe79c ebx=01c58820 ecx=03ffe734 edx=01c2a740 esi=03ffe774 edi=02984838 eip=00000000 esp=03ffda70 ebp=01c2a740 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: 错误 ->00000000 ??? 00000001 ??? 00000002 ??? 00000003 ??? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03FFDA6C 75C098E5 03FFE774 00000000 75C098BB 00000000 iexplore! 01C2A740 000000B2 01C04B20 01C48980 00000272 00000006 mshtml! *----> 原始堆栈转储 <----* 03ffda70 e5 98 c0 75 74 e7 ff 03 - 00 00 00 00 bb 98 c0 75 ...ut..........u 03ffda80 00 00 00 00 53 70 c0 75 - f0 aa c6 01 20 88 c5 01 ....Sp.u.... ... 03ffda90 f8 da ff 03 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03ffdaa0 40 a7 c2 01 00 00 00 00 - 14 00 00 00 70 6b c6 01 @...........pk.. 03ffdab0 60 62 c6 01 00 00 00 00 - 58 50 c8 75 00 d0 c5 01 `b......XP.u.... 03ffdac0 ff ff ff ff ff ff ff ff - 21 20 01 01 06 00 00 00 ........! ...... 03ffdad0 6a 5b ad 75 02 00 00 00 - f0 aa c6 01 4a 5a ad 75 j[.u........JZ.u 03ffdae0 01 00 00 00 4c 5d 11 00 - 88 59 11 00 00 00 00 00 ....L]...Y...... 03ffdaf0 00 88 c5 01 00 00 c5 01 - 20 db ff 03 96 55 ad 75 ........ ....U.u 03ffdb00 00 00 00 00 80 5c 11 00 - 88 59 11 00 00 00 00 00 .....\...Y...... 03ffdb10 88 59 11 00 00 00 00 00 - 00 00 00 00 00 00 00 00 .Y.............. 03ffdb20 74 db ff 03 5a 6b ad 75 - 00 00 00 00 00 00 00 00 t...Zk.u........ 03ffdb30 00 00 00 00 88 59 11 00 - 8c 59 11 00 2f 1d a9 75 .....Y...Y../..u 03ffdb40 2c 8f 8e 02 b0 da c0 01 - 00 00 00 00 00 5f a9 75 ,............_.u 03ffdb50 88 59 11 00 b8 8d 8e 02 - 94 2f c5 77 b0 da c0 01 .Y......./.w.... 03ffdb60 6e f9 c5 76 2c 8f 8e 02 - 7a 2f c5 77 b0 8d 8e 02 n..v,...z/.w.... 03ffdb70 84 6e 98 02 8c db ff 03 - 70 f8 c5 76 b8 8d 8e 02 .n......p..v.... 03ffdb80 04 8f 8e 02 b0 8d 8e 02 - b0 8d 8e 02 00 00 00 00 ................ 03ffdb90 44 f7 c5 76 7a 2f c5 77 - 78 1a 0f 00 c8 db ff 03 D..vz/.wx....... 03ffdba0 84 6e 98 02 52 f6 c5 76 - 78 1a 0f 00 dc 6d 98 02 .n..R..vx....m.. 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1172) 时间: 2003-9-15 @ 19:39:48.078 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 604 svchost.exe 800 Explorer.exe 832 Rundll32.exe 1044 daemon.exe 1052 RealPlay.exe 1076 internat.exe 1084 AcroTray.exe 884 XDICT.exe 916 wuauclt.exe 1096 flashget.exe 900 conime.exe 1172 iexplore.exe 1276 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (74F90000 - 74F97000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (68740000 - 6874C000) (773A0000 - 773B5000) (75A90000 - 75CCE000) (75D80000 - 75DF7000) (75A60000 - 75A88000) (025D0000 - 0275D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A40000 - 75A48000) (68EF0000 - 68F0F000) (72750000 - 72759000) (51000000 - 51044000) (72800000 - 72806000) (76DB0000 - 76DC1000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (751C0000 - 751D5000) (64260000 - 64288000) (6B6E0000 - 6B709000) (6AC80000 - 6ACBC000) (73800000 - 73824000) (04C10000 - 04C2C000) (04C40000 - 04C93000) (6AC70000 - 6AC80000) 线程 ID 0x37c 的状态转储 eax=01b4e960 ebx=00000000 ecx=000002a3 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 002C0210 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 f8 01 54 00 c8 04 00 00 - 63 c0 00 00 30 02 29 00 ..T.....c...0.). 0006dd68 70 4c 92 0a b7 00 00 00 - 12 01 00 00 00 00 00 00 pL.............. 0006dd78 03 00 00 00 18 ac 07 00 - 01 44 00 80 48 51 07 00 .........D..HQ.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 10 02 2c 00 ........|!.v..,. 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x4f8 的状态转储 eax=0007f6a0 ebx=80020000 ecx=7504910d edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 78716D9E 786F9AD0 0007E3A0 4007DEBC 00000070 ntdll!ZwReplyWaitReceivePortEx 00BCFFA8 78701C6C 0007C208 00BCFFEC 77E687DD 0007D050 rpcrt4!TowerConstruct 00BCFFB4 77E687DD 0007D050 4007DEBC 00000070 0007D050 rpcrt4!I_RpcServerInqTransportType 00BCFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x3fc 的状态转储 eax=77a94639 ebx=00000102 ecx=0007d360 edx=00000000 esi=77f882f8 edi=00c0ff74 eip=77f88303 esp=00c0ff60 ebp=00c0ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0176d533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00C0FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 00c0ff60 17 76 e6 77 00 00 00 00 - 74 ff c0 00 b5 77 e6 77 .v.w....t....w.w 00c0ff70 98 09 08 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 ......<.....0u.. 00c0ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 00c0ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 00c0ffa0 98 09 08 00 ec ff c0 00 - 98 09 08 00 53 46 a9 77 ............SF.w 00c0ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 98 09 08 00 .z.w.z.w...w.... 00c0ffc0 d8 7a a4 77 c3 7a a4 77 - 98 09 08 00 00 c0 fd 7f .z.w.z.w........ 00c0ffd0 60 d3 07 00 c0 ff c0 00 - 60 d3 07 00 ff ff ff ff `.......`....... 00c0ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 00c0fff0 00 00 00 00 39 46 a9 77 - 98 09 08 00 00 00 00 00 ....9F.w........ 00c10000 01 00 00 00 88 d3 07 00 - 01 00 00 00 d0 d3 07 00 ................ 00c10010 01 00 00 00 e8 83 08 00 - 01 00 00 00 08 87 09 00 ................ 00c10020 01 00 00 00 18 e5 08 00 - 01 00 00 00 18 ef 0a 00 ................ 00c10030 01 00 00 00 58 90 09 00 - 40 00 c1 00 00 00 00 00 ....X...@....... 00c10040 48 00 c1 00 00 00 00 00 - 50 00 c1 00 00 00 00 00 H.......P....... 00c10050 58 00 c1 00 00 00 00 00 - 60 00 c1 00 00 00 00 00 X.......`....... 00c10060 68 00 c1 00 00 00 00 00 - 70 00 c1 00 00 00 00 00 h.......p....... 00c10070 78 00 c1 00 00 00 00 00 - 80 00 c1 00 00 00 00 00 x............... 00c10080 88 00 c1 00 00 00 00 00 - 90 00 c1 00 00 00 00 00 ................ 00c10090 98 00 c1 00 00 00 00 00 - a0 00 c1 00 00 00 00 00 ................ 线程 ID 0x3a8 的状态转储 eax=02937f44 ebx=77f88e68 ecx=000a2640 edx=00000000 esi=00000000 edi=00000001 eip=77f88e73 esp=0197facc ebp=0197fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:024dd09f=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FB04 74F57EE6 0000027C 00000280 00000001 00000004 ntdll!NtWaitForSingleObject 0197FBF0 74FB1DA9 00000001 0197FE84 0197FC7C 0197FD80 msafd!WSPSetSockOpt 0197FC54 76BD6F2E 00000001 0197FE84 0197FC7C 0197FD80 ws2_32!select 0197FFB0 76BD6E24 77E687DD 000A2640 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0197FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0197facc 62 bb f5 74 7c 02 00 00 - 01 00 00 00 f0 fa 97 01 b..t|........... 0197fadc 84 fe 97 01 78 fb 97 01 - 68 fb 97 01 01 00 00 00 ....x...h....... 0197faec 7e 7b c3 01 c0 b4 b3 ff - ff ff ff ff 80 70 0a 00 ~{...........p.. 0197fafc 00 00 00 00 00 00 00 00 - f0 fb 97 01 e6 7e f5 74 .............~.t 0197fb0c 7c 02 00 00 80 02 00 00 - 01 00 00 00 04 00 00 00 |............... 0197fb1c 80 fd 97 01 a8 70 0a 00 - 7c fc 97 01 00 00 00 00 .....p..|....... 0197fb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff 00 00 0e 05 ................ 0197fb3c 00 f0 0d 05 00 00 0a 05 - 00 00 07 00 90 fb 97 01 ................ 0197fb4c 17 20 01 00 80 fb 97 01 - 10 00 00 00 00 00 00 00 . .............. 0197fb5c 06 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 0197fb6c ff ff ff ff 01 00 00 00 - 00 41 c9 77 80 02 00 00 .........A.w.... 0197fb7c 19 00 00 00 30 00 00 00 - 78 b1 e6 77 a0 41 c9 77 ....0...x..w.A.w 0197fb8c a0 41 c9 77 dc fb 97 01 - f4 64 fb 77 48 16 f8 77 .A.w.....d.wH..w 0197fb9c ff ff ff ff ec fb 97 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 0197fbac 80 70 0a 00 24 00 00 00 - 00 00 00 00 68 fb 97 01 .p..$.......h... 0197fbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 0197fbcc dc fb 97 01 b8 ca aa 03 - 84 fb 97 01 1c fb 97 01 ................ 0197fbdc 24 fc 97 01 44 fc 97 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0197fbec ff ff ff ff 54 fc 97 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 0197fbfc 84 fe 97 01 7c fc 97 01 - 80 fd 97 01 90 ff 97 01 ....|........... 线程 ID 0x2b0 的状态转储 eax=00070110 ebx=00000001 ecx=00000208 edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=019bfe60 ebp=019bfeac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0251d433=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019BFEAC 77DF2A00 019BFE84 00000001 00000000 019BFEA4 ntdll!NtWaitForMultipleObjects 019BFF08 77DF2A77 019BFED4 00000000 0000EA60 000000FF user32!MsgWaitForMultipleObjectsEx 019BFF24 76DD9CD1 00000000 00000000 00000000 0000EA60 user32!MsgWaitForMultipleObjects 00090308 00000002 0008FE58 00000001 000002B0 00000464 browseui!DllGetClassObject 线程 ID 0x4b4 的状态转储 eax=019f0003 ebx=80020000 ecx=7ffd9000 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=019ffe28 ebp=019fff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0255d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 019FFFA8 78701C6C 0007C208 019FFFEC 77E687DD 0008ACD8 rpcrt4!TowerConstruct 019FFFB4 77E687DD 0008ACD8 00000000 00000000 0008ACD8 rpcrt4!I_RpcServerInqTransportType 019FFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x3e8 的状态转储 eax=777f21fe ebx=00000003 ecx=7ffda000 edx=00000000 esi=77f88e58 edi=00000003 eip=77f88e63 esp=01a3fd24 ebp=01a3fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0259d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A3FD70 77E6A31D 01A3FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 01A3FFB4 77E687DD 00000004 000A5994 7FFDA000 000A59A0 kernel32!WaitForMultipleObjects 01A3FFEC 00000000 777F21FE 000A59A0 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a3fd24 b7 7a e6 77 03 00 00 00 - 48 fd a3 01 01 00 00 00 .z.w....H....... 01a3fd34 00 00 00 00 00 00 00 00 - 00 00 00 00 a0 59 0a 00 .............Y.. 01a3fd44 01 00 00 00 54 02 00 00 - 58 02 00 00 68 02 00 00 ....T...X...h... 01a3fd54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fd64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff a3 01 ................ 01a3fd74 1d a3 e6 77 48 fd a3 01 - 01 00 00 00 00 00 00 00 ...wH........... 01a3fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 03 00 00 00 .........".w.... 01a3fd94 b0 fe a3 01 00 00 00 00 - ff ff ff ff a0 59 0a 00 .............Y.. 01a3fda4 00 a0 fd 7f 94 59 0a 00 - 00 00 00 00 00 00 00 00 .....Y.......... 01a3fdb4 00 00 00 00 00 00 00 00 - 00 00 00 00 38 00 00 00 ............8... 01a3fdc4 23 00 00 00 23 00 00 00 - 94 59 0a 00 00 a0 fd 7f #...#....Y...... 01a3fdd4 a0 59 0a 00 00 a0 fd 7f - 00 a0 fd 7f fe 21 7f 77 .Y...........!.w 01a3fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 01a3fdf4 fc ff a3 01 23 00 00 00 - 00 00 00 00 00 00 00 00 ....#........... 01a3fe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe14 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe24 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe34 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe44 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x3c8 的状态转储 eax=00000000 ebx=000a8518 ecx=7ffd7000 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=01aaff84 ebp=01aaffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:0260d557=754b18c0 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AAFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000A8518 ntdll!NtRemoveIoCompletion 01AAFFEC 00000000 74F54766 000A8518 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01aaff84 b8 47 f5 74 d8 02 00 00 - bc ff aa 01 b0 ff aa 01 .G.t............ 01aaff94 a4 ff aa 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01aaffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 38 04 aa 03 ...........t8... 01aaffb4 ec ff aa 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01aaffc4 00 00 00 00 18 85 0a 00 - 00 70 fd 7f 00 00 00 00 .........p...... 01aaffd4 c0 ff aa 01 00 00 00 00 - ff ff ff ff 56 18 e8 77 ............V..w 01aaffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01aafff4 66 47 f5 74 18 85 0a 00 - 00 00 00 00 c8 00 00 00 fG.t............ 01ab0004 00 01 00 00 ff ee ff ee - 02 10 00 00 00 00 00 00 ................ 01ab0014 00 fe 00 00 00 00 10 00 - 00 20 00 00 00 02 00 00 ......... ...... 01ab0024 00 20 00 00 2f 02 00 00 - ff ef fd 7f 0b 00 08 06 . ../........... 01ab0034 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab0044 98 05 ab 01 0f 00 00 00 - f8 ff ff ff 50 00 ab 01 ............P... 01ab0054 50 00 ab 01 40 06 ab 01 - 00 00 00 00 00 00 00 00 P...@........... 01ab0064 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab0074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab0084 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab0094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab00a4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ab00b4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x49c 的状态转储 eax=0008efa8 ebx=01f4ff74 ecx=00000000 edx=00000000 esi=77f88e68 edi=000002f4 eip=77f88e73 esp=01f4ff58 ebp=01f4ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02aad52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F4FF7C 77E67837 000002F4 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f4ff58 0f 78 e6 77 f4 02 00 00 - 00 00 00 00 74 ff f4 01 .x.w........t... 01f4ff68 00 00 00 00 e0 1e af 01 - 40 7e f8 77 00 44 5f 9a ........@~.w.D_. 01f4ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 f4 02 00 00 .... ..w7x.w.... 01f4ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 f4 02 00 00 .'......k..u.... 01f4ff98 c0 27 09 00 88 b0 06 00 - e0 1e af 01 ec ff f4 01 .'.............. 01f4ffa8 e0 1e af 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f4ffb8 dd 87 e6 77 e0 1e af 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f4ffc8 e0 1e af 01 00 60 fd 7f - d7 13 00 00 c0 ff f4 01 .....`.......... 01f4ffd8 d7 13 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01f4ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f4fff8 e0 1e af 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ........LCDT.... 01f50008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 01f50018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 01f50028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 01f50038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 01f50048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 01f50058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 01f50068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 01f50078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01f50088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x4c0 的状态转储 eax=00070000 ebx=0214ff74 ecx=0000002d edx=00000000 esi=77f88e68 edi=00000330 eip=77f88e73 esp=0214ff58 ebp=0214ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02cad52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0214FF7C 77E67837 00000330 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x4bc 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=028eff24 ebp=028eff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0344d4f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 028EFF70 77E6A31D 028EFF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 028EFFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 028EFFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 028eff24 b7 7a e6 77 02 00 00 00 - 48 ff 8e 02 01 00 00 00 .z.w....H....... 028eff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 028eff44 00 00 00 00 c4 03 00 00 - 70 03 00 00 00 ce 1f 81 ........p....... 028eff54 a0 cc 1f 81 06 b2 af 75 - 00 20 50 c0 b8 9c a1 81 .......u. P..... 028eff64 b8 9c a1 81 00 00 00 00 - 00 00 00 00 b4 ff 8e 02 ................ 028eff74 1d a3 e6 77 48 ff 8e 02 - 01 00 00 00 00 00 00 00 ...wH........... 028eff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 028eff94 a4 ff 8e 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 028effa4 c4 03 00 00 70 03 00 00 - 00 00 00 00 00 00 00 00 ....p........... 028effb4 ec ff 8e 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 028effc4 00 00 00 00 00 00 00 00 - 00 40 fd 7f 98 25 fb 77 .........@...%.w 028effd4 c0 ff 8e 02 98 25 fb 77 - ff ff ff ff 56 18 e8 77 .....%.w....V..w 028effe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 028efff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 028f0004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 028f0014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 028f0024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 028f0034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 028f0044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 028f0054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x3c4 的状态转储 eax=00000000 ebx=02b9ff70 ecx=7ffd3000 edx=00000000 esi=77f88e68 edi=0000041c eip=77f88e73 esp=02b9ff54 ebp=02b9ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:036fd527=54432000 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02B9FF78 77E67837 0000041C 00000003 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000003 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 02b9ff54 0f 78 e6 77 1c 04 00 00 - 00 00 00 00 70 ff b9 02 .x.w........p... 02b9ff64 bc d3 b6 01 50 d3 b6 01 - ae 95 92 0a d0 8a ff ff ....P........... 02b9ff74 ff ff ff ff 03 00 00 00 - 37 78 e6 77 1c 04 00 00 ........7x.w.... 02b9ff84 03 00 00 00 00 00 00 00 - 04 a1 bd 75 1c 04 00 00 ...........u.... 02b9ff94 03 00 00 00 50 d3 b6 01 - ec ff b9 02 5d 28 df 77 ....P.......](.w 02b9ffa4 50 d3 b6 01 00 00 00 00 - 9a f4 b2 75 90 02 37 00 P..........u..7. 02b9ffb4 74 f4 b2 75 dd 87 e6 77 - 50 d3 b6 01 5d 28 df 77 t..u...wP...](.w 02b9ffc4 90 02 37 00 50 d3 b6 01 - 00 30 fd 7f 90 02 37 00 ..7.P....0....7. 02b9ffd4 c0 ff b9 02 90 02 37 00 - ff ff ff ff 56 18 e8 77 ......7.....V..w 02b9ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02b9fff4 6b f4 b2 75 50 d3 b6 01 - 00 00 00 00 4d 5a 90 00 k..uP.......MZ.. 02ba0004 03 00 00 00 04 00 00 00 - ff ff 00 00 b8 00 00 00 ................ 02ba0014 00 00 00 00 40 00 00 00 - 00 00 00 00 00 00 00 00 ....@........... 02ba0024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02ba0034 00 00 00 00 00 00 00 00 - b8 00 00 00 0e 1f ba 0e ................ 02ba0044 00 b4 09 cd 21 b8 01 4c - cd 21 54 68 69 73 20 70 ....!..L.!This p 02ba0054 72 6f 67 72 61 6d 20 63 - 61 6e 6e 6f 74 20 62 65 rogram cannot be 02ba0064 20 72 75 6e 20 69 6e 20 - 44 4f 53 20 6d 6f 64 65 run in DOS mode 02ba0074 2e 0d 0d 0a 24 00 00 00 - 00 00 00 00 31 25 35 db ....$.......1%5. 02ba0084 75 44 5b 88 75 44 5b 88 - 75 44 5b 88 5f 4c 5d 88 uD[.uD[.uD[._L]. 线程 ID 0x3d0 的状态转储 eax=02e8fdc8 ebx=00000000 ecx=0009e210 edx=00000000 esi=00000000 edi=00000694 eip=77f889e7 esp=02e8f858 ebp=02e8f8c8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtReadFile 77f889dc b8a1000000 mov eax,0xa1 77f889e1 8d542404 lea edx,[esp+0x4] ss:039ece2b=00000000 77f889e5 cd2e int 2e 77f889e7 c22400 ret 0x24 77f889ea 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02E8F8C8 76BD2937 00000694 03A8D180 00000800 02E8F948 ntdll!NtReadFile 02E8F910 76BD404B 03A8D180 00000800 02E8F948 03A8CF60 wininet!ReadUrlCacheEntryStream 02E8F950 7659EA30 00000800 03A8D0DC 00000008 00000000 wininet!InternetReadFileExA 02E8F974 7659DD65 03A8D180 00000800 02E8FAE8 02E8FB08 urlmon!CoInternetCombineUrl 02E8F988 7659DD45 03A8CF60 03A8D180 00000800 02E8FAE8 urlmon!CoInternetCombineUrl 02E8FB08 76598D7D 03A8C430 02E8FB34 02E8FB38 02E8FB3C urlmon!CoInternetCombineUrl 02E8FB28 765989E7 03A8C434 0000000C 00000001 000003B5 urlmon!CopyStgMedium 02E8FB50 765AFE3C 03A8C434 00000006 0000000C 00000001 urlmon!CopyStgMedium 02E8FB8C 7659E998 03A8C298 0000000C 00000001 000003B5 urlmon!CoInternetGetSession 02E8FCB8 7659DAD7 03A8CF60 00000000 7659D623 00000000 urlmon!CoInternetCombineUrl 02E8FD30 7659D3D5 03A8C298 02E8FD4C 00000000 03A8CF60 urlmon!CoInternetCombineUrl 02E8FD5C 7659D33A 00000005 00000000 03A8D138 03A8CF60 urlmon!CoInternetCombineUrl 02E8FDFC 7659C7C5 00000080 00000001 00CC01FC 0296FF40 urlmon!CoInternetCombineUrl 02E8FE18 76BCAD91 00CC01FC 03A8CF60 00000064 02E8FE40 urlmon!CoInternetCombineUrl 02E8FF54 76BCD0AC 00000064 02E8FE40 00000008 77F87F20 wininet!InternetConnectA 02E8FF84 77C59013 00000000 01F4CF6C 77C50000 00000000 wininet!IncrementUrlCacheHeaderData 02E8FFAC 77C58F85 76BD1253 77E687DD 00000000 01F4CF6C shlwapi!Ordinal394 02E8FFEC 00000000 77C58F5C 00000000 00000000 00000008 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 02e8f858 07 7f e6 77 94 06 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02e8f868 00 00 00 00 a0 f8 e8 02 - 80 d1 a8 03 00 08 00 00 ................ 02e8f878 00 00 00 00 00 00 00 00 - 20 56 9c 03 d8 10 c2 76 ........ V.....v 02e8f888 00 00 00 00 c4 f8 e8 02 - 08 00 00 00 0e 00 00 00 ................ 02e8f898 20 56 9c 03 d8 10 c2 76 - 00 00 00 00 00 08 00 00 V.....v........ 02e8f8a8 00 00 00 00 80 b5 13 00 - 80 f8 e8 02 01 01 01 01 ................ 02e8f8b8 dc ff e8 02 56 18 e8 77 - 38 7f e6 77 ff ff ff ff ....V..w8..w.... 02e8f8c8 10 f9 e8 02 37 29 bd 76 - 94 06 00 00 80 d1 a8 03 ....7).v........ 02e8f8d8 00 08 00 00 48 f9 e8 02 - 00 00 00 00 48 f9 e8 02 ....H.......H... 02e8f8e8 a0 e0 a8 03 c1 28 bd 76 - 0b 00 00 00 00 00 00 00 .....(.v........ 02e8f8f8 80 d1 a8 03 48 f9 e8 02 - 00 00 00 00 00 00 00 00 ....H........... 02e8f908 40 ff 96 02 00 00 00 00 - 50 f9 e8 02 4b 40 bd 76 @.......P...K@.v 02e8f918 80 d1 a8 03 00 08 00 00 - 48 f9 e8 02 60 cf a8 03 ........H...`... 02e8f928 dc d0 a8 03 00 00 00 00 - 01 00 00 00 01 00 00 00 ................ 02e8f938 60 cf a8 03 01 00 00 00 - 01 00 00 00 48 52 65 71 `...........HReq 02e8f948 00 00 00 00 a0 e0 a8 03 - 74 f9 e8 02 30 ea 59 76 ........t...0.Yv 02e8f958 00 08 00 00 dc d0 a8 03 - 08 00 00 00 00 00 00 00 ................ 02e8f968 00 00 00 00 80 d1 a8 03 - 30 c4 a8 03 88 f9 e8 02 ........0....... 02e8f978 65 dd 59 76 80 d1 a8 03 - 00 08 00 00 e8 fa e8 02 e.Yv............ 02e8f988 08 fb e8 02 45 dd 59 76 - 60 cf a8 03 80 d1 a8 03 ....E.Yv`....... 线程 ID 0x2b8 的状态转储 eax=00000001 ebx=80020000 ecx=00010101 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=02fcfe28 ebp=02fcff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:03b2d3fb=000000ff 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02FCFF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 02FCFFA8 78701C6C 0007C208 02FCFFEC 77E687DD 00115EA0 rpcrt4!TowerConstruct 02FCFFB4 77E687DD 00115EA0 00000000 00000000 00115EA0 rpcrt4!I_RpcServerInqTransportType 02FCFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x518 的状态转储 eax=00000000 ebx=00000478 ecx=0300fe84 edx=00000000 esi=0300ff98 edi=77df7c12 eip=77df1d6b esp=0300ff58 ebp=0300ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03b6d52b=65042400 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03b6d52b=65042400 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03b6d52b=65042400 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0300FF78 77535C36 0300FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0300FFB4 77E687DD 00000478 77555428 00064A38 00000478 winmm!midiOutGetNumDevs 0300FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0xe0 的状态转储 eax=c00000a3 ebx=00000001 ecx=01010101 edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=0304fe60 ebp=0304feac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03bad433=d8002400 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0304FEAC 77DF2A00 0304FE84 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0304FF08 77DF2A77 0304FED4 00000000 FFFFFFFF 000000FF user32!MsgWaitForMultipleObjectsEx 0304FF24 76DD9CD1 00000000 00000000 00000000 FFFFFFFF user32!MsgWaitForMultipleObjects 039C5548 00000002 03AB0890 00000001 000000E0 000004DC browseui!DllGetClassObject 线程 ID 0x424 的状态转储 eax=00000000 ebx=00000000 ecx=00000000 edx=00000000 esi=02930c70 edi=00000000 eip=77df2268 esp=0310ee64 ebp=0310eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:03c6c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0310EEA8 76DF217C 002B0208 0310FFA4 000DB8F0 00000000 user32!WaitMessage 0310EF30 76DF1F65 000DB8F0 00070718 00000000 000DB8F0 browseui!Ordinal102 0310FFAC 76C66950 000DB8F0 77E687DD 000DB8F0 00070718 browseui!Ordinal102 0310FFEC 00000000 76C66927 000DB8F0 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0310ee64 92 23 df 76 a4 ff 10 03 - f0 b8 0d 00 00 00 00 00 .#.v............ 0310ee74 20 02 46 00 02 80 00 00 - 00 00 00 00 00 00 00 00 .F............. 0310ee84 ae 95 92 0a 20 03 00 00 - 84 01 00 00 48 51 07 00 .... .......HQ.. 0310ee94 01 00 00 00 70 0c 93 02 - 01 44 00 80 b8 d5 09 00 ....p....D...... 0310eea4 00 00 00 00 30 ef 10 03 - 7c 21 df 76 08 02 2b 00 ....0...|!.v..+. 0310eeb4 a4 ff 10 03 f0 b8 0d 00 - 00 00 00 00 00 00 00 00 ................ 0310eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0310eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0310eee4 f4 ee 10 03 a4 ff 10 03 - 00 00 00 00 00 00 00 00 ................ 0310eef4 00 00 00 00 00 00 00 00 - 20 ef 10 03 37 78 e6 77 ........ ...7x.w 0310ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0310ef14 7f 1a f9 77 b4 ee 10 03 - 78 dd 06 00 dc ff 10 03 ...w....x....... 0310ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 10 03 Rz.vxi.v........ 0310ef34 65 1f df 76 f0 b8 0d 00 - 18 07 07 00 00 00 00 00 e..v............ 0310ef44 f0 b8 0d 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0310ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0310ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0310ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0310ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0310ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x3c0 的状态转储 eax=00000003 ebx=00000001 ecx=00000494 edx=00000494 esi=000004e4 edi=046c0570 eip=77f4734f esp=03ca3000 ebp=03ca3118 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: GetNearestPaletteIndex 77f4731e 39354080f777 cmp [77f78040],esi ds:77f78040=000003a8 77f47324 897510 mov [ebp+0x10],esi ss:048006ea=???????? 77f47327 0f841b370100 je GdiEntry8+0x978 (77f5aa48) 77f4732d 85f6 test esi,esi 77f4732f 740c jz ResetDCA+0x377 (77f4ae3d) 77f47331 3b357c80f777 cmp esi,[77f7807c] ds:77f7807c=000004e4 77f47337 0f85a8000000 jne GetNearestPaletteIndex+0x154 (77f473e5) 77f4733d 833d4880f77700 cmp dword ptr [77f78048],0x0 ds:77f78048=00000000 77f47344 0f8543370100 jne GdiEntry8+0x9bd (77f5aa8d) 77f4734a 682080f777 push 0x77f78020 错误 ->77f4734f ff158410f477 call dword ptr [77f41084] ds:77f41084=77f87e40 77f47355 6a01 push 0x1 77f47357 53 push ebx 77f47358 ff750c push dword ptr [ebp+0xc] ss:048006ea=???????? 77f4735b 6a00 push 0x0 77f4735d 57 push edi 77f4735e ff7508 push dword ptr [ebp+0x8] ss:048006ea=???????? 77f47361 e83cb3ffff call CreateBitmap+0x273 (77f426a2) 77f47366 8bf0 mov esi,eax 77f47368 85f6 test esi,esi 77f4736a 0f8482000000 je GetNearestPaletteIndex+0x161 (77f473f2) 77f47370 8b4d10 mov ecx,[ebp+0x10] ss:048006ea=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03CA3118 77F47497 0F0105F3 04C22BA0 000004E4 03CA315C gdi32!GetNearestPaletteIndex 03CA31C8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 gdi32!GetTextExtentPoint32A 03CA3264 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3300 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA339C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3438 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA34D4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3570 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA360C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA36A8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3744 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA37E0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA387C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3918 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA39B4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3A50 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3AEC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3B88 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3C24 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3CC0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3D5C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3DF8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3E94 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3F30 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA3FCC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4068 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4104 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA41A0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA423C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA42D8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4374 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4410 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA44AC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4548 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA45E4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4680 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA471C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA47B8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4854 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA48F0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA498C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4A28 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4AC4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4B60 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4BFC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4C98 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4D34 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4DD0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4E6C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4F08 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA4FA4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5040 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA50DC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5178 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5214 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA52B0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA534C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA53E8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5484 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5520 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA55BC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5658 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA56F4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5790 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA582C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA58C8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5964 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5A00 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5A9C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5B38 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5BD4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5C70 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5D0C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5DA8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5E44 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5EE0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA5F7C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6018 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA60B4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6150 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA61EC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6288 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6324 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA63C0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA645C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA64F8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6594 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6630 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA66CC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6768 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6804 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA68A0 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA693C 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA69D8 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6A74 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6B10 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6BAC 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6C48 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6CE4 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut 03CA6D80 37F02B6D 0F0105F3 00000006 00000001 04C22BA0 !xe_TextOut *----> 原始堆栈转储 <----* 03ca3000 20 80 f7 77 01 00 00 00 - f3 05 01 0f a0 2b c2 04 ..w.........+.. 03ca3010 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03ca3020 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03ca3030 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03ca3040 00 00 00 00 00 00 00 00 - 70 05 6c 04 e4 04 00 00 ........p.l..... 03ca3050 01 00 00 00 40 03 09 00 - 80 30 ca 03 12 cd e6 77 ....@....0.....w 03ca3060 70 05 6c 04 ac 30 ca 03 - 01 00 00 00 70 05 6c 04 p.l..0......p.l. 03ca3070 e4 04 00 00 01 00 00 00 - 1c 00 ef 01 01 00 00 00 ................ 03ca3080 b4 31 ca 03 2b 74 f4 77 - 51 74 f4 77 f3 05 01 0f .1..+t.wQt.w.... 03ca3090 ac 30 ca 03 01 00 00 00 - f8 31 ca 03 00 00 00 00 .0.......1...... 03ca30a0 01 00 00 00 f3 05 01 0f - a0 2b c2 04 6d 00 00 00 .........+..m... 03ca30b0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03ca30c0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03ca30d0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03ca30e0 00 00 00 00 70 05 6c 04 - e4 04 00 00 01 00 00 00 ....p.l......... 03ca30f0 40 03 09 00 1c 31 ca 03 - 12 cd e6 77 70 05 6c 04 @....1.....wp.l. 03ca3100 48 31 ca 03 01 00 00 00 - d4 38 f4 77 f3 05 01 0f H1.......8.w.... 03ca3110 24 31 ca 03 44 00 00 00 - c8 31 ca 03 97 74 f4 77 $1..D....1...t.w 03ca3120 f3 05 01 0f a0 2b c2 04 - e4 04 00 00 5c 31 ca 03 .....+......\1.. 03ca3130 00 00 00 00 a1 2a f0 37 - f3 05 01 0f a0 2b c2 04 .....*.7.....+.. 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1216) 时间: 2003-9-16 @ 20:22:02.765 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 604 svchost.exe 800 Explorer.exe 832 Rundll32.exe 1044 daemon.exe 1052 RealPlay.exe 1076 internat.exe 1084 AcroTray.exe 884 XDICT.exe 916 wuauclt.exe 1096 flashget.exe 900 conime.exe 1216 iexplore.exe 1340 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (68740000 - 6874C000) (773A0000 - 773B5000) (75A90000 - 75CCE000) (75D80000 - 75DF7000) (02140000 - 022CD000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (72750000 - 72759000) (51000000 - 51044000) (72800000 - 72806000) (75A40000 - 75A48000) (75010000 - 75020000) (76DB0000 - 76DC1000) (75CE0000 - 75CE6000) (68EF0000 - 68F0F000) (751C0000 - 751D5000) (6DDA0000 - 6DDAA000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (6AC80000 - 6ACBC000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (6A900000 - 6A9EA000) (657F0000 - 65838000) (6CC40000 - 6CC6C000) (6CDF0000 - 6CE56000) (6B080000 - 6B0A9000) (6CE80000 - 6CEAF000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (759D0000 - 75A3B000) (0E5C0000 - 0E7BD000) (72140000 - 7214B000) 线程 ID 0x4ec 的状态转储 eax=0000001a ebx=00000000 ecx=000000a3 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 00510096 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 1a 01 16 01 02 80 00 00 - 00 00 00 00 00 00 00 00 ................ 0006dd68 be 9e df 0f 73 01 00 00 - eb 00 00 00 00 00 00 00 ....s........... 0006dd78 03 00 00 00 18 ac 07 00 - 01 44 00 80 48 51 07 00 .........D..HQ.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 96 00 51 00 ........|!.v..Q. 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x4f0 的状态转储 eax=00000000 ebx=00000000 ecx=00080630 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 78716D9E 786F9AD0 0007E3A0 4007DEBC 00000070 ntdll!ZwReplyWaitReceivePortEx 00BCFFA8 78701C6C 0007C208 00BCFFEC 77E687DD 0007D050 rpcrt4!TowerConstruct 00BCFFB4 77E687DD 0007D050 4007DEBC 00000070 0007D050 rpcrt4!I_RpcServerInqTransportType 00BCFFEC 00000000 78701C54 0007D050 00000000 7D7D7D7D kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 00bcfe28 d4 74 71 78 18 01 00 00 - 54 ff bc 00 00 00 00 00 .tqx....T....... 00bcfe38 f0 9e 16 04 58 ff bc 00 - 90 c1 07 00 78 e3 07 00 ....X.......x... 00bcfe48 20 7f f8 77 b4 cb 08 bc - 0c 11 45 80 08 20 01 e1 ..w......E.. .. 00bcfe58 60 57 89 81 bc cc 08 bc - 28 95 89 81 b0 cc 08 bc `W......(....... 00bcfe68 02 73 00 00 00 00 00 00 - 00 00 00 00 b4 cb 08 bc .s.............. 00bcfe78 77 14 45 80 01 00 00 00 - 60 57 89 81 87 4d 00 00 w.E.....`W...M.. 00bcfe88 10 00 f8 00 4a d6 24 81 - 7c 00 f8 00 5a d6 24 81 ....J.$.|...Z.$. 00bcfe98 58 73 00 e1 28 95 89 81 - 70 73 00 e1 00 00 00 00 Xs..(...ps...... 00bcfea8 1f 00 00 00 90 95 89 81 - 90 95 89 81 00 00 00 00 ................ 00bcfeb8 01 00 00 00 10 cc 08 bc - 00 00 00 00 f8 68 aa e2 .............h.. 00bcfec8 d4 cb 08 bc 00 00 00 00 - 72 4f 41 80 b0 96 89 81 ........rOA..... 00bcfed8 60 57 89 81 c4 cc 08 bc - ca 08 45 80 04 00 00 00 `W........E..... 00bcfee8 48 d6 24 81 66 41 4a 80 - 80 f3 06 00 00 00 00 00 H.$.fAJ......... 00bcfef8 48 f3 06 00 7d e7 0c 02 - 00 00 00 00 00 00 00 00 H...}........... 00bcff08 01 00 00 00 5c 29 50 c0 - 14 01 00 00 00 20 50 c0 ....\)P...... P. 00bcff18 00 00 00 00 00 00 00 00 - 14 01 00 00 01 00 00 00 ................ 00bcff28 00 20 50 c0 00 a1 39 81 - 20 70 29 81 00 00 00 00 . P...9. p)..... 00bcff38 20 70 29 81 b0 71 29 81 - 64 cc 08 bc f3 da 42 80 p)..q).d.....B. 00bcff48 a4 da 42 80 d4 4b 06 80 - 80 71 29 81 02 00 04 00 ..B..K...q)..... 00bcff58 00 a2 2f 4d ff ff ff ff - 50 fe bc 00 00 00 02 80 ../M....P....... 线程 ID 0x4fc 的状态转储 eax=00000000 ebx=ffffffff ecx=77c941a0 edx=00000000 esi=7fffffff edi=00000102 eip=77f88e73 esp=0197facc ebp=0197fb04 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:024dd09f=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FB04 74F57EE6 00000218 000009C8 00000000 00000004 ntdll!NtWaitForSingleObject 0197FBF0 74FB1DA9 00000002 0197FE84 0197FC7C 0197FD80 msafd!WSPSetSockOpt 0197FC54 76BD6F2E 00000002 0197FE84 0197FC7C 0197FD80 ws2_32!select 0197FFB0 76BD6E24 77E687DD 000A2700 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0197FFEC 00000000 76BD6E1B 000A2700 00000000 22116E7F wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0197facc d2 bc f5 74 18 02 00 00 - 01 00 00 00 f0 fa 97 01 ...t............ 0197fadc 84 fe 97 01 78 fb 97 01 - 68 fb 97 01 56 c5 3e 21 ....x...h...V.>! 0197faec 4d 7c c3 01 ff ff ff ff - ff ff ff 7f a0 3c 0a 00 M|...........<.. 0197fafc 00 00 00 00 00 00 00 00 - f0 fb 97 01 e6 7e f5 74 .............~.t 0197fb0c 18 02 00 00 c8 09 00 00 - 00 00 00 00 04 00 00 00 ................ 0197fb1c 80 fd 97 01 b0 90 64 0d - 7c fc 97 01 40 c1 e5 ff ......d.|...@... 0197fb2c ff ff ff ff 80 5b 05 a0 - f7 ff ff ff 1c 02 00 00 .....[.......... 0197fb3c 18 02 00 00 00 00 00 00 - 00 00 07 00 90 fb 97 01 ................ 0197fb4c 17 20 01 00 80 fb 97 01 - 10 00 00 00 00 00 00 00 . .............. 0197fb5c 06 00 00 00 40 c1 e5 ff - ff ff ff ff c0 1c eb 9f ....@........... 0197fb6c f7 ff ff ff 03 00 00 00 - 00 3c 0a 00 c8 09 00 00 .........<...... 0197fb7c 19 00 00 00 30 00 00 00 - 1c 02 00 00 19 00 00 00 ....0........... 0197fb8c a0 41 c9 77 c8 09 00 00 - 02 01 00 00 48 16 f8 77 .A.w........H..w 0197fb9c ff ff ff ff ec fb 97 01 - 1e 73 e6 77 00 00 07 00 .........s.w.... 0197fbac a0 3c 0a 00 24 00 00 00 - 01 00 00 00 68 fb 97 01 .<..$.......h... 0197fbbc 44 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 D............... 0197fbcc 00 00 00 00 1c 00 00 00 - 9c fb 97 01 1c fb 97 01 ................ 0197fbdc 24 fc 97 01 44 fc 97 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0197fbec ff ff ff ff 54 fc 97 01 - a9 1d fb 74 02 00 00 00 ....T......t.... 0197fbfc 84 fe 97 01 7c fc 97 01 - 80 fd 97 01 90 ff 97 01 ....|........... 线程 ID 0x450 的状态转储 eax=00000001 ebx=00000004 ecx=00000101 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=019ffd24 ebp=019ffd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0255d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFD70 77E6A31D 019FFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 019FFFB4 77E687DD 00000005 000A3B04 7FFDA000 000A49C0 kernel32!WaitForMultipleObjects 019FFFEC 00000000 777F21FE 000A49C0 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 019ffd24 b7 7a e6 77 04 00 00 00 - 48 fd 9f 01 01 00 00 00 .z.w....H....... 019ffd34 00 00 00 00 00 00 00 00 - 01 00 00 00 c0 49 0a 00 .............I.. 019ffd44 01 00 00 00 38 02 00 00 - 3c 02 00 00 4c 02 00 00 ....8...<...L... 019ffd54 94 0a 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffd64 90 0a 00 00 11 00 00 00 - 02 00 00 00 b4 ff 9f 01 ................ 019ffd74 1d a3 e6 77 48 fd 9f 01 - 01 00 00 00 00 00 00 00 ...wH........... 019ffd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 019ffd94 b0 fe 9f 01 00 00 00 00 - ff ff ff ff c0 49 0a 00 .............I.. 019ffda4 00 a0 fd 7f 04 3b 0a 00 - 00 00 00 00 00 00 00 00 .....;.......... 019ffdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 019ffdc4 23 00 00 00 23 00 00 00 - 04 3b 0a 00 00 a0 fd 7f #...#....;...... 019ffdd4 c0 49 0a 00 00 a0 fd 7f - 00 a0 fd 7f fe 21 7f 77 .I...........!.w 019ffde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 019ffdf4 fc ff 9f 01 23 00 00 00 - 00 00 00 00 00 00 00 00 ....#........... 019ffe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffe14 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffe24 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffe34 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffe44 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 019ffe54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x4f8 的状态转储 eax=00000001 ebx=00000000 ecx=00010101 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01aefe28 ebp=01aeff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0264d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AEFF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01AEFFA8 78701C6C 0007C208 01AEFFEC 77E687DD 000AF798 rpcrt4!TowerConstruct 01AEFFB4 77E687DD 000AF798 00000000 00000000 000AF798 rpcrt4!I_RpcServerInqTransportType 01AEFFEC 00000000 78701C54 000AF798 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01aefe28 d4 74 71 78 18 01 00 00 - 54 ff ae 01 00 00 00 00 .tqx....T....... 01aefe38 f8 37 14 00 58 ff ae 01 - 90 c1 07 00 a8 a2 0a 00 .7..X........... 01aefe48 20 7f f8 77 18 50 41 61 - ac 6b 31 bc 65 f1 44 80 ..w.PAa.k1.e.D. 01aefe58 28 43 3f 81 1d f0 44 80 - d8 fd 35 09 10 fe 35 09 (C?...D...5...5. 01aefe68 02 00 00 00 a0 3d 1b 81 - 18 50 41 e1 a8 f1 35 81 .....=...PA...5. 01aefe78 18 50 41 e1 28 43 3f 81 - 18 50 41 e1 88 4d 00 00 .PA.(C?..PA..M.. 01aefe88 18 50 41 e1 0c 00 00 00 - a0 85 8a e2 00 00 00 00 .PA............. 01aefe98 a4 6b 31 bc 00 10 00 00 - 00 10 00 00 38 6d 31 bc .k1.........8m1. 01aefea8 8c 05 46 80 70 93 40 80 - ff ff ff ff d8 fd 35 09 ..F.p.@.......5. 01aefeb8 10 fe 35 09 00 e0 46 80 - 18 50 41 e1 00 00 00 00 ..5...F..PA..... 01aefec8 00 e0 46 80 48 6d 31 bc - d0 e6 4a 80 64 6d 31 bc ..F.Hm1...J.dm1. 01aefed8 b0 fd 35 09 93 e5 4a 80 - 0c 00 00 00 00 00 00 00 ..5...J......... 01aefee8 00 00 00 00 00 00 00 00 - 20 03 00 00 00 00 00 00 ........ ....... 01aefef8 34 6c 31 bc 00 00 00 00 - 00 00 00 00 00 00 00 00 4l1............. 01aeff08 25 02 00 00 d1 fb 46 70 - ab bb 1b 25 31 6a fa 77 %.....Fp...%1j.w 01aeff18 c8 75 3c 81 60 1d 43 80 - 00 a2 2f 4d ff ff ff ff .u<.`.C.../M.... 01aeff28 7f f0 07 d3 00 a1 39 81 - a0 3d 26 81 00 00 00 00 ......9..=&..... 01aeff38 a0 3d 26 81 30 3f 26 81 - 64 6c 31 bc f3 da 42 80 .=&.0?&.dl1...B. 01aeff48 a4 da 42 80 d4 4b 06 80 - 00 3f 26 81 03 00 05 00 ..B..K...?&..... 01aeff58 00 a2 2f 4d ff ff ff ff - 50 fe ae 01 00 00 02 80 ../M....P....... 线程 ID 0x3e8 的状态转储 eax=0000000d ebx=01f8ff74 ecx=00001850 edx=00000000 esi=77f88e68 edi=0000030c eip=77f88e73 esp=01f8ff58 ebp=01f8ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02aed52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F8FF7C 77E67837 0000030C 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 6E006900 65006400 32007800 68002E00 6D007400 2F007800 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f8ff58 0f 78 e6 77 0c 03 00 00 - 00 00 00 00 74 ff f8 01 .x.w........t... 01f8ff68 00 00 00 00 e0 1e b3 01 - 40 7e f8 77 00 44 5f 9a ........@~.w.D_. 01f8ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 0c 03 00 00 .... ..w7x.w.... 01f8ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 0c 03 00 00 .'......k..u.... 01f8ff98 c0 27 09 00 88 b0 06 00 - e0 1e b3 01 ec ff f8 01 .'.............. 01f8ffa8 e0 1e b3 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f8ffb8 dd 87 e6 77 e0 1e b3 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f8ffc8 e0 1e b3 01 00 50 fd 7f - 97 1b 00 00 c0 ff f8 01 .....P.......... 01f8ffd8 97 1b 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01f8ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f8fff8 e0 1e b3 01 00 00 00 00 - 0d 00 b6 03 02 00 3f 00 ..............?. 01f90008 3f 00 3f 00 3f 00 81 fe - 00 00 00 00 00 00 00 00 ?.?.?........... 01f90018 00 00 03 80 00 00 01 00 - 02 00 03 00 04 00 05 00 ................ 01f90028 06 00 07 00 08 00 09 00 - 0a 00 0b 00 0c 00 0d 00 ................ 01f90038 0e 00 0f 00 10 00 11 00 - 12 00 13 00 14 00 15 00 ................ 01f90048 16 00 17 00 18 00 19 00 - 1a 00 1b 00 1c 00 1d 00 ................ 01f90058 1e 00 1f 00 20 00 21 00 - 22 00 23 00 24 00 25 00 .... .!.".#.$.%. 01f90068 26 00 27 00 28 00 29 00 - 2a 00 2b 00 2c 00 2d 00 &.'.(.).*.+.,.-. 01f90078 2e 00 2f 00 30 00 31 00 - 32 00 33 00 34 00 35 00 ../.0.1.2.3.4.5. 01f90088 36 00 37 00 38 00 39 00 - 3a 00 3b 00 3c 00 3d 00 6.7.8.9.:.;.<.=. 线程 ID 0x3c0 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0239ff24 ebp=0239ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:02efd4f7=61002800 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0239FF70 77E6A31D 0239FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0239FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0239FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0239ff24 b7 7a e6 77 02 00 00 00 - 48 ff 39 02 01 00 00 00 .z.w....H.9..... 0239ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0239ff44 00 00 00 00 a0 03 00 00 - 9c 03 00 00 00 af 1f 81 ................ 0239ff54 a0 ad 1f 81 06 b2 af 75 - 00 20 50 c0 b8 9c a1 81 .......u. P..... 0239ff64 b8 9c a1 81 00 00 00 00 - 00 00 00 00 b4 ff 39 02 ..............9. 0239ff74 1d a3 e6 77 48 ff 39 02 - 01 00 00 00 00 00 00 00 ...wH.9......... 0239ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0239ff94 a4 ff 39 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..9............. 0239ffa4 a0 03 00 00 9c 03 00 00 - 00 00 00 00 00 00 00 00 ................ 0239ffb4 ec ff 39 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..9....w........ 0239ffc4 00 00 00 00 00 00 00 00 - 00 30 fd 7f 98 25 fb 77 .........0...%.w 0239ffd4 c0 ff 39 02 98 25 fb 77 - ff ff ff ff 56 18 e8 77 ..9..%.w....V..w 0239ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0239fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 023a0004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 023a0014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 023a0024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 023a0034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 023a0044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 023a0054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x10c 的状态转储 eax=00000012 ebx=02d7ff70 ecx=7ff9d000 edx=00000000 esi=77f88e68 edi=0000020c eip=77f88e73 esp=02d7ff54 ebp=02d7ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:038dd527=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02D7FF78 77E67837 0000020C 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject *----> 原始堆栈转储 <----* 02d7ff54 0f 78 e6 77 0c 02 00 00 - 00 00 00 00 70 ff d7 02 .x.w........p... 02d7ff64 68 12 d2 01 80 1a b6 01 - be 9e df 0f f0 d8 ff ff h............... 02d7ff74 ff ff ff ff 01 00 00 00 - 37 78 e6 77 0c 02 00 00 ........7x.w.... 02d7ff84 01 00 00 00 00 00 00 00 - 04 a1 bd 75 0c 02 00 00 ...........u.... 02d7ff94 01 00 00 00 80 1a b6 01 - ec ff d7 02 5d 28 df 77 ............](.w 02d7ffa4 80 1a b6 01 00 00 00 00 - 9a f4 b2 75 42 02 4c 00 ...........uB.L. 02d7ffb4 74 f4 b2 75 dd 87 e6 77 - 80 1a b6 01 5d 28 df 77 t..u...w....](.w 02d7ffc4 42 02 4c 00 80 1a b6 01 - 00 d0 f9 7f 42 02 4c 00 B.L.........B.L. 02d7ffd4 c0 ff d7 02 42 02 4c 00 - ff ff ff ff 56 18 e8 77 ....B.L.....V..w 02d7ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 02d7fff4 6b f4 b2 75 80 1a b6 01 - 00 00 00 00 00 00 00 00 k..u............ 02d80004 9f 10 13 00 10 00 90 01 - 17 00 b0 01 ff ff ff 00 ................ 02d80014 ff ff ff 00 00 00 00 00 - 00 00 00 00 ff ff ff 00 ................ 02d80024 ff ff ff 00 00 00 00 00 - 00 00 00 00 a8 03 86 00 ................ 02d80034 01 00 00 00 0d 02 01 01 - 00 00 00 00 00 00 00 00 ................ 02d80044 00 00 00 00 00 00 00 00 - 02 00 00 00 01 00 00 00 ................ 02d80054 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02d80064 1f 00 89 01 00 00 00 00 - ff ff ff ff ff ff ff ff ................ 02d80074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02d80084 01 00 00 00 00 00 00 00 - 00 00 00 00 21 00 8a 01 ............!... 线程 ID 0x2b8 的状态转储 eax=02dffe44 ebx=000003b8 ecx=0000000a edx=00000000 esi=02dfff98 edi=77df7c12 eip=77df1d6b esp=02dfff58 ebp=02dfff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0395d52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0395d52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0395d52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02DFFF78 77535C36 02DFFF98 00000000 00000000 00000000 user32!TranslateMessageEx 02DFFFB4 77E687DD 000003B8 77555428 00064030 000003B8 winmm!midiOutGetNumDevs 02DFFFEC 00000000 77535BB9 000003B8 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02dfff58 4e 7c df 77 98 ff df 02 - 00 00 00 00 00 00 00 00 N|.w............ 02dfff68 00 00 00 00 b8 03 00 00 - 00 00 00 00 12 7c df 77 .............|.w 02dfff78 b4 ff df 02 36 5c 53 77 - 98 ff df 02 00 00 00 00 ....6\Sw........ 02dfff88 00 00 00 00 00 00 00 00 - 28 54 55 77 30 40 06 00 ........(TUw0@.. 02dfff98 26 02 3d 00 bc 03 00 00 - e4 41 24 04 00 00 00 00 &.=......A$..... 02dfffa8 f7 56 df 0f a3 01 00 00 - 57 02 00 00 ec ff df 02 .V......W....... 02dfffb8 dd 87 e6 77 b8 03 00 00 - 28 54 55 77 30 40 06 00 ...w....(TUw0@.. 02dfffc8 b8 03 00 00 00 c0 f9 7f - 00 00 53 77 c0 ff df 02 ..........Sw.... 02dfffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 02dfffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 02dffff8 b8 03 00 00 00 00 00 00 - 00 00 00 00 00 00 01 00 ................ 02e00008 00 10 00 00 00 00 00 00 - 98 05 07 00 00 e0 73 0d ..............s. 02e00018 00 20 00 00 00 00 00 00 - 20 01 e0 02 00 e0 77 0d . ...... .....w. 02e00028 00 20 00 00 00 00 00 00 - d8 05 07 00 00 f0 71 0d . ............q. 02e00038 00 20 00 00 00 00 00 00 - 50 01 e0 02 00 f0 6e 0d . ......P.....n. 02e00048 00 10 00 00 00 00 00 00 - 30 00 e0 02 00 40 70 0d ........0....@p. 02e00058 00 10 00 00 00 00 00 00 - c8 05 07 00 00 a0 61 0d ..............a. 02e00068 00 10 00 00 00 00 00 00 - 10 01 e0 02 00 f0 72 0d ..............r. 02e00078 00 10 00 00 00 00 00 00 - b0 00 e0 02 00 50 79 0d .............Py. 02e00088 00 10 00 00 00 00 00 00 - 30 01 e0 02 00 10 69 0d ........0.....i. 线程 ID 0x338 的状态转储 eax=0407bef0 ebx=02883300 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=04daff84 ebp=04daffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:0590d557=???????? 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04DAFFB4 77E687DD 74F55F4B 7FF9E000 00000000 02883300 ntdll!NtRemoveIoCompletion 04DAFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x330 的状态转储 eax=06d830f0 ebx=00000000 ecx=00000002 edx=00000000 esi=77f41bac edi=64010705 eip=37f030b0 esp=06d82fbc ebp=06d83044 iopl=0 nv up ei pl nz ac pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000212 函数: xe_ExtTextOutW 37f03090 55 push ebp 37f03091 8bec mov ebp,esp 37f03093 6aff push 0xff 37f03095 68c0a1f037 push 0x37f0a1c0 37f0309a 682050f037 push 0x37f05020 37f0309f 64a100000000 mov eax,fs:[00000000] fs:00000000=???????? 37f030a5 50 push eax 37f030a6 64892500000000 mov fs:[00000000],esp fs:00000000=???????? 37f030ad 83ec78 sub esp,0x78 错误 ->37f030b0 53 push ebx 37f030b1 56 push esi 37f030b2 57 push edi 37f030b3 e848e0ffff call 37f01100 37f030b8 a1989df037 mov eax,[37f09d98] ds:37f09d98=00000001 37f030bd 85c0 test eax,eax 37f030bf 0f8459010000 je xe_ExtTextOutW+0x18e (37f0321e) 37f030c5 8b5d1c mov ebx,[ebp+0x1c] ss:078e0616=???????? 37f030c8 85db test ebx,ebx 37f030ca 0f844e010000 je xe_ExtTextOutW+0x18e (37f0321e) 37f030d0 8b7520 mov esi,[ebp+0x20] ss:078e0616=???????? 37f030d3 83fe01 cmp esi,0x1 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06D83044 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83100 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D831BC 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83278 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83334 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D833F0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D834AC 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83568 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83624 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D836E0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8379C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83858 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83914 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D839D0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83A8C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83B48 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83C04 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83CC0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83D7C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83E38 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83EF4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D83FB0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8406C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84128 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D841E4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D842A0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8435C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84418 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D844D4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84590 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8464C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84708 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D847C4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84880 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8493C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D849F8 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84AB4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84B70 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84C2C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84CE8 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84DA4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84E60 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84F1C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D84FD8 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85094 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85150 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8520C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D852C8 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85384 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85440 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D854FC 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D855B8 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85674 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85730 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D857EC 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D858A8 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85964 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85A20 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85ADC 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85B98 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85C54 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85D10 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85DCC 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85E88 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D85F44 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86000 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D860BC 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86178 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86234 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D862F0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D863AC 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86468 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86524 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D865E0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8669C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86758 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86814 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D868D0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8698C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86A48 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86B04 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86BC0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86C7C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86D38 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86DF4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86EB0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D86F6C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D87028 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D870E4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D871A0 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8725C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D87318 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D873D4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D87490 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8754C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D87608 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D876C4 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D87780 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D8783C 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW 06D878F8 37F03244 64010705 00000000 00000000 00000002 !xe_ExtTextOutW *----> 原始堆栈转储 <----* 06d82fbc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d82fcc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d82fdc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d82fec 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d82ffc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d8300c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d8301c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d8302c 00 00 00 00 08 2c d8 06 - f0 30 d8 06 20 50 f0 37 .....,...0.. P.7 06d8303c c0 a1 f0 37 ff ff ff ff - 00 31 d8 06 44 32 f0 37 ...7.....1..D2.7 06d8304c 05 07 01 64 00 00 00 00 - 00 00 00 00 02 00 00 00 ...d............ 06d8305c 04 e8 db 06 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d8306c 05 07 01 64 ac 1b f4 77 - 00 00 00 00 00 00 00 00 ...d...w........ 06d8307c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d8308c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d8309c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d830ac 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d830bc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d830cc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d830dc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 06d830ec 08 2c d8 06 ac 31 d8 06 - 20 50 f0 37 c0 a1 f0 37 .,...1.. P.7...7 线程 ID 0x314 的状态转储 eax=00000001 ebx=00000002 ecx=000a3cc8 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=06e4fe5c ebp=06e4fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:079ad42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 06E4FEA8 77DF2A00 06E4FE80 00000001 00000000 06E4FEA0 ntdll!NtWaitForMultipleObjects 06E4FF04 77DF2A77 06E4FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 06E4FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 06E4FF74 77C58FFD 06E4FFA0 06E4FFA4 06E4FFA8 06E4FF9C shlwapi!Ordinal271 06E4FFAC 77C58F85 77FB64F4 77E687DD 00000000 0197FA10 shlwapi!Ordinal394 06E4FFEC 00000000 77C58F5C 00000000 00000000 0707073B shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 06e4fe5c b7 7a e6 77 02 00 00 00 - 80 fe e4 06 01 00 00 00 .z.w............ 06e4fe6c 00 00 00 00 a0 fe e4 06 - 00 00 00 00 00 00 00 00 ................ 06e4fe7c 02 00 00 00 10 02 00 00 - c0 05 00 00 e0 30 7c 0d .............0|. 06e4fe8c 00 00 00 00 b8 4f 74 0d - 0f ee bc 76 78 2d 08 04 .....Ot....vx-.. 06e4fe9c 00 00 00 00 00 ba 3c dc - ff ff ff ff 04 ff e4 06 ......<......... 06e4feac 00 2a df 77 80 fe e4 06 - 01 00 00 00 00 00 00 00 .*.w............ 06e4febc a0 fe e4 06 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 06e4fecc 00 00 00 00 10 02 00 00 - c0 05 00 00 00 00 00 00 ................ 06e4fedc 00 00 00 00 30 ff e4 06 - 2b ee bc 76 e5 03 00 00 ....0...+..v.... 06e4feec ee d0 bc 76 b8 4f 74 0d - 00 00 00 00 cc e6 f9 7f ...v.Ot......... 06e4fefc 00 00 00 00 c0 05 00 00 - 20 ff e4 06 77 2a df 77 ........ ...w*.w 06e4ff0c d0 fe e4 06 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 06e4ff1c 00 00 00 00 74 ff e4 06 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 06e4ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 06e4ff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 d8 ef 66 0d .....A.w ..w..f. 06e4ff4c 78 2d 08 04 d8 ef 66 0d - 01 00 00 00 49 d0 bc 76 x-....f.....I..v 06e4ff5c 78 2d 08 04 8c ff e4 06 - aa 8f df 0f a0 41 c9 77 x-...........A.w 06e4ff6c 60 ea 00 00 01 00 00 00 - ac ff e4 06 fd 8f c5 77 `..............w 06e4ff7c a0 ff e4 06 a4 ff e4 06 - a8 ff e4 06 9c ff e4 06 ................ 06e4ff8c 60 ea 00 00 10 fa 97 01 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x498 的状态转储 eax=04213628 ebx=00000102 ecx=77b0a0e8 edx=00000000 esi=77f882f8 edi=0796ff74 eip=77f88303 esp=0796ff60 ebp=0796ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:084cd533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0796FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x518 的状态转储 eax=00000000 ebx=07eeff74 ecx=0d789804 edx=00000000 esi=77f88e68 edi=00000778 eip=77f88e73 esp=07eeff58 ebp=07eeff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:08a4d52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 07EEFF7C 77E67837 00000778 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 6E006900 65006400 32007800 68002E00 6D007400 2F007800 00000000 00000000 00000000 00000000 00000000 线程 ID 0x328 的状态转储 eax=0957fe01 ebx=00000000 ecx=04337180 edx=00000000 esi=0957ff94 edi=77df7c12 eip=77df1d6b esp=0957ff50 ebp=0957ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0a0dd523=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0a0dd523=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0a0dd523=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0957FF70 6A92E75C 0957FF94 00000000 00000000 00000000 user32!TranslateMessageEx 0957FFB4 77E687DD 000007B0 08D3A127 08D39FE8 000007B0 msjava!DllGetClassObject 0957FFEC 00000000 6A92E6D6 000007B0 00000000 00000000 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0957ff50 4e 7c df 77 94 ff 57 09 - 00 00 00 00 00 00 00 00 N|.w..W......... 0957ff60 00 00 00 00 00 00 00 00 - a0 54 e3 08 12 7c df 77 .........T...|.w 0957ff70 b4 ff 57 09 5c e7 92 6a - 94 ff 57 09 00 00 00 00 ..W.\..j..W..... 0957ff80 00 00 00 00 00 00 00 00 - 27 a1 d3 08 e8 9f d3 08 ........'....... 0957ff90 b0 07 00 00 c6 02 94 00 - 39 04 00 00 00 00 00 00 ........9....... 0957ffa0 00 00 00 00 18 57 d8 0f - 50 00 00 00 c6 00 00 00 .....W..P....... 0957ffb0 a0 54 e3 08 ec ff 57 09 - dd 87 e6 77 b0 07 00 00 .T....W....w.... 0957ffc0 27 a1 d3 08 e8 9f d3 08 - b0 07 00 00 00 80 f9 7f '............... 0957ffd0 00 00 07 00 c0 ff 57 09 - 00 00 07 00 ff ff ff ff ......W......... 0957ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 0957fff0 00 00 00 00 d6 e6 92 6a - b0 07 00 00 00 00 00 00 .......j........ 09580000 00 00 00 00 b9 00 00 00 - 00 00 00 00 00 00 00 00 ................ 09580010 00 00 00 00 62 00 13 09 - dc 1a 53 09 00 00 00 00 ....b.....S..... 09580020 08 00 78 09 28 01 78 09 - 48 00 00 00 00 00 00 00 ..x.(.x.H....... 09580030 0c 00 00 00 00 00 00 00 - 00 00 00 00 0c 00 00 00 ................ 09580040 00 00 00 00 00 00 00 00 - e0 00 58 09 10 56 e5 08 ..........X..V.. 09580050 48 00 00 00 2c 00 00 00 - 21 00 38 c2 00 04 00 00 H...,...!.8..... 09580060 c0 00 58 09 00 00 00 00 - a8 4a e3 08 00 00 00 00 ..X......J...... 09580070 b8 6f 90 6a 00 00 00 00 - 00 00 00 00 01 00 00 00 .o.j............ 09580080 60 56 e5 08 60 56 e5 08 - ff ff ff ff 00 00 00 00 `V..`V.......... 线程 ID 0x390 的状态转储 eax=00000000 ebx=00000000 ecx=00000000 edx=00000000 esi=77f88e68 edi=00000848 eip=77f88e73 esp=0bfbff44 ebp=0bfbff68 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:0cb1d517=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0BFBFF68 77E67837 00000848 FFFFFFFF 00000000 6A92FC30 ntdll!NtWaitForSingleObject 77E67828 74FF0C24 7EE80C24 C2FFFFFF 74FF0008 15FF0424 kernel32!WaitForSingleObject 74FF006A 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 0bfbff44 0f 78 e6 77 48 08 00 00 - 00 00 00 00 00 00 00 00 .x.wH........... 0bfbff54 00 00 00 00 98 65 e5 08 - 47 77 e6 77 48 08 00 00 .....e..Gw.wH... 0bfbff64 48 08 00 00 28 78 e6 77 - 37 78 e6 77 48 08 00 00 H...(x.w7x.wH... 0bfbff74 ff ff ff ff 00 00 00 00 - 30 fc 92 6a 48 08 00 00 ........0..jH... 0bfbff84 ff ff ff ff 00 00 00 00 - ec ff fb 0b 98 65 e5 08 .............e.. 0bfbff94 98 65 e5 08 f0 fb 92 6a - 98 65 e5 08 a0 a0 d3 08 .e.....j.e...... 0bfbffa4 48 4d 58 09 00 00 00 00 - 00 00 00 00 00 00 00 00 HMX............. 0bfbffb4 fd 9b f8 77 dd 87 e6 77 - 00 00 00 00 a0 a0 d3 08 ...w...w........ 0bfbffc4 48 4d 58 09 00 00 00 00 - 00 70 f9 7f b6 02 13 09 HMX......p...... 0bfbffd4 c0 ff fb 0b b6 02 13 09 - ff ff ff ff 56 18 e8 77 ............V..w 0bfbffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0bfbfff4 a6 fb 92 6a 00 00 00 00 - 00 00 00 00 00 00 00 00 ...j............ 0bfc0004 29 00 00 00 00 00 00 00 - 40 82 e6 08 2c 00 fc 0b ).......@...,... 0bfc0014 3c a3 ff 0b 2f 06 00 00 - 2f 06 00 00 00 00 fc 0b <.../.../....... 0bfc0024 08 00 4c 0c 09 06 00 00 - 29 00 00 00 50 40 4d 0c ..L.....)...P@M. 0bfc0034 00 00 00 00 68 55 58 09 - ff 74 24 04 ff 15 50 7d ....hUX..t$...P} 0bfc0044 e6 08 c2 04 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0bfc0054 29 00 00 00 68 40 4d 0c - 00 00 00 00 a0 56 58 09 )...h@M......VX. 0bfc0064 ff 74 24 04 ff 15 f0 7c - e6 08 c2 04 00 00 00 00 .t$....|........ 0bfc0074 00 00 00 00 00 00 00 00 - 29 00 00 00 80 40 4d 0c ........)....@M. 线程 ID 0x50c 的状态转储 eax=042d5df8 ebx=00000001 ecx=0000000b edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=0cd4fd10 ebp=0cd4fd5c iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0d8ad2e3=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0CD4FD5C 6A9016C0 0CD4FD34 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 msjava!GCEnable 线程 ID 0x470 的状态转储 eax=00000000 ebx=08e7e890 ecx=0cd8fecc edx=00000000 esi=0cd8fda4 edi=00000000 eip=77df1d6b esp=0cd8fd64 ebp=0cd8fd84 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:0d8ed337=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:0d8ed337=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:0d8ed337=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0CD8FD84 6B086A5E 0CD8FDA4 00000000 00000000 00000000 user32!TranslateMessageEx 0CD8FDC0 6B086987 00000002 08E7E490 08E7E764 80004005 msawt!com_ms_awt_WToolkit_createNativeToolkit 0CD8FDD8 6A91E64C 00161CC0 08E7E890 0CD8FEA4 6A91E50F msawt!com_ms_awt_WToolkit_createNativeToolkit 0CD8FDE8 6A91E50F 6B086942 0CD8FE04 00000002 00161CC0 msjava!convert_Java_Object_to_IUnknown 0CD8FEA4 09031525 0CD8FEC8 00000001 00000000 08E7E494 msjava!convert_Java_Object_to_IUnknown 0CD8FEC8 FFFFFFFF 08E7E764 0BFCE1D7 09FBC348 09FBC360 00000003 00000000 00000000 00000000 00000000 00000000 线程 ID 0x3d0 的状态转储 eax=09fbe8b0 ebx=00000001 ecx=00000000 edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=0d2afd58 ebp=0d2afda4 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0de0d32b=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0D2AFDA4 6A9016C0 0D2AFD7C 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 00000000 00000000 00000000 00000000 00000000 00000000 msjava!GCEnable 线程 ID 0x52c 的状态转储 eax=00000000 ebx=80020000 ecx=0007a4b8 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=0e84fe28 ebp=0e84ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0f3ad3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0E84FF74 78716D9E 786F9A00 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 0E84FFA8 78701C6C 0414F430 0E84FFEC 77E687DD 04249C48 rpcrt4!TowerConstruct 0E84FFB4 77E687DD 04249C48 00000000 00000000 04249C48 rpcrt4!I_RpcServerInqTransportType 0E84FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x504 的状态转储 eax=0e95fed0 ebx=00000002 ecx=000007a8 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0e95fe5c ebp=0e95fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0f4bd42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0E95FEA8 77DF2A00 0E95FE80 00000001 00000000 0E95FEA0 ntdll!NtWaitForMultipleObjects 0E95FF04 77DF2A77 0E95FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0E95FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0E95FF74 77C58FFD 0E95FFA0 0E95FFA4 0E95FFA8 0E95FF9C shlwapi!Ordinal271 0E95FFAC 77C58F85 00000000 77E687DD 00000000 0D5A6230 shlwapi!Ordinal394 0E95FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x468 的状态转储 eax=00000041 ebx=00000002 ecx=00083598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0e9afe5c ebp=0e9afea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0f50d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0E9AFEA8 77DF2A00 0E9AFE80 00000001 00000000 0E9AFEA0 ntdll!NtWaitForMultipleObjects 0E9AFF04 77DF2A77 0E9AFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0E9AFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0E9AFF74 77C58FFD 0E9AFFA0 0E9AFFA4 0E9AFFA8 0E9AFF9C shlwapi!Ordinal271 0E9AFFAC 77C58F85 00000000 77E687DD 00000000 0D5A6230 shlwapi!Ordinal394 0E9AFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x508 的状态转储 eax=0415f9a8 ebx=00000000 ecx=00000000 edx=00000000 esi=02899898 edi=00000000 eip=77df2268 esp=02b4ee64 ebp=02b4eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:036ac437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02B4EEA8 76DF217C 0062022A 02B4FFA4 0014DB70 00000000 user32!WaitMessage 02B4EF30 76DF1F65 0014DB70 00070718 00000000 0014DB70 browseui!Ordinal102 02B4FFAC 76C66950 0014DB70 77E687DD 0014DB70 00070718 browseui!Ordinal102 02B4FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 02b4ee64 92 23 df 76 a4 ff b4 02 - 70 db 14 00 00 00 00 00 .#.v....p....... 02b4ee74 5e 02 d7 00 13 01 00 00 - 2e 16 00 00 00 00 00 00 ^............... 02b4ee84 be 9e df 0f 70 01 00 00 - ec 00 00 00 48 51 07 00 ....p.......HQ.. 02b4ee94 01 00 00 00 98 98 89 02 - 01 44 00 80 e0 df 07 04 .........D...... 02b4eea4 00 00 00 00 30 ef b4 02 - 7c 21 df 76 2a 02 62 00 ....0...|!.v*.b. 02b4eeb4 a4 ff b4 02 70 db 14 00 - 00 00 00 00 00 00 00 00 ....p........... 02b4eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 02b4eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 02b4eee4 f4 ee b4 02 a4 ff b4 02 - 00 00 00 00 00 00 00 00 ................ 02b4eef4 00 00 00 00 00 00 00 00 - 20 ef b4 02 37 78 e6 77 ........ ...7x.w 02b4ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 02b4ef14 7f 1a f9 77 b4 ee b4 02 - 78 dd 06 00 dc ff b4 02 ...w....x....... 02b4ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff b4 02 Rz.vxi.v........ 02b4ef34 65 1f df 76 70 db 14 00 - 18 07 07 00 00 00 00 00 e..vp........... 02b4ef44 70 db 14 00 00 00 00 00 - 00 00 00 00 00 00 00 00 p............... 02b4ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02b4ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02b4ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02b4ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02b4ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 发生应用程序意外错误: 应用程序: iexplore.exe (pid=964) 时间: 2003-9-17 @ 15:25:04.437 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 604 svchost.exe 800 Explorer.exe 832 Rundll32.exe 1044 daemon.exe 1052 RealPlay.exe 1076 internat.exe 1084 AcroTray.exe 884 XDICT.exe 916 wuauclt.exe 1096 flashget.exe 900 conime.exe 964 iexplore.exe 1304 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (68740000 - 6874C000) (773A0000 - 773B5000) (75A90000 - 75CCE000) (75D80000 - 75DF7000) (02730000 - 028BD000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (75A60000 - 75A88000) (75A40000 - 75A48000) (72750000 - 72759000) (51000000 - 51044000) (72800000 - 72806000) (68EF0000 - 68F0F000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (6AC80000 - 6ACBC000) (751C0000 - 751D5000) (6DDA0000 - 6DDAA000) (759D0000 - 75A3B000) (766B0000 - 766B9000) (76F60000 - 76F6F000) (64840000 - 64883000) (6DC30000 - 6DC42000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (73800000 - 73824000) 线程 ID 0x2a4 的状态转储 eax=01b34b00 ebx=00000000 ecx=01b34b00 edx=00000000 esi=0007ac18 edi=00000000 eip=77df2268 esp=0006dd48 ebp=0006dd8c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:00bcb31b=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0006DD8C 76DF217C 013500CA 0006EE88 0007AA30 00000000 user32!WaitMessage 0006DE14 76DF1F65 0007AA30 00000001 0007AA30 00000000 browseui!Ordinal102 0006EE90 76C66950 0007AA30 76C6667E 0007AA30 00000001 browseui!Ordinal102 0006FF00 004013B6 000728F1 00000001 00401A46 000728F1 shdocvw!Ordinal131 0006FF60 00401452 00400000 00000000 000728F1 00000001 iexplore! 0006FFC0 77E7CA90 00000000 00000000 7FFDF000 00000000 iexplore! 0006FFF0 00000000 004013B9 00000000 000000C8 00000100 kernel32!CreateProcessW *----> 原始堆栈转储 <----* 0006dd48 92 23 df 76 88 ee 06 00 - 30 aa 07 00 00 00 00 00 .#.v....0....... 0006dd58 96 00 65 00 13 01 00 00 - f3 67 00 00 00 00 00 00 ..e......g...... 0006dd68 e6 17 f6 13 cf 01 00 00 - 1c 02 00 00 00 00 00 00 ................ 0006dd78 09 00 00 00 18 ac 07 00 - 01 44 00 80 48 51 07 00 .........D..HQ.. 0006dd88 00 00 00 00 14 de 06 00 - 7c 21 df 76 ca 00 35 01 ........|!.v..5. 0006dd98 88 ee 06 00 30 aa 07 00 - 00 00 00 00 00 00 00 00 ....0........... 0006dda8 e0 ff 06 00 e0 ff 06 00 - 00 de 06 00 33 ff dd 76 ............3..v 0006ddb8 00 00 f9 78 0c 00 02 00 - 0a 01 06 00 60 00 00 00 ...x........`... 0006ddc8 03 00 00 00 04 00 00 00 - 0c 00 00 00 01 00 00 00 ................ 0006ddd8 00 00 00 00 78 00 00 00 - 00 de 06 00 b2 20 df 76 ....x........ .v 0006dde8 e0 b2 e4 76 0c 00 00 00 - 78 20 df 76 e0 b2 e4 76 ...v....x .v...v 0006ddf8 0c 00 00 00 98 dd 06 00 - 00 00 00 00 e0 ff 06 00 ................ 0006de08 52 7a e4 76 78 69 df 76 - 00 00 00 00 90 ee 06 00 Rz.vxi.v........ 0006de18 65 1f df 76 30 aa 07 00 - 01 00 00 00 30 aa 07 00 e..v0.......0... 0006de28 00 00 00 00 5c 00 5d 00 - 5e 00 5f 00 60 00 41 00 ....\.].^._.`.A. 0006de38 42 00 43 00 44 00 45 00 - 46 00 47 00 48 00 49 00 B.C.D.E.F.G.H.I. 0006de48 4a 00 4b 00 4c 00 4d 00 - 4e 00 4f 00 50 00 51 00 J.K.L.M.N.O.P.Q. 0006de58 52 00 53 00 54 00 55 00 - 56 00 57 00 58 00 59 00 R.S.T.U.V.W.X.Y. 0006de68 5a 00 7b 00 7c 00 7d 00 - 7e 00 7f 00 ac 20 20 00 Z.{.|.}.~.... . 0006de78 20 00 20 00 20 00 20 00 - 20 00 20 00 20 00 20 00 . . . . . . . . 线程 ID 0x4ec 的状态转储 eax=00000000 ebx=00000102 ecx=02a92508 edx=00000000 esi=77f882f8 edi=00c0ff74 eip=77f88303 esp=00c0ff60 ebp=00c0ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0176d533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00C0FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 00c0ff60 17 76 e6 77 00 00 00 00 - 74 ff c0 00 b5 77 e6 77 .v.w....t....w.w 00c0ff70 98 09 08 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 ......<.....0u.. 00c0ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 00c0ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 00c0ffa0 98 09 08 00 ec ff c0 00 - 98 09 08 00 53 46 a9 77 ............SF.w 00c0ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 98 09 08 00 .z.w.z.w...w.... 00c0ffc0 d8 7a a4 77 c3 7a a4 77 - 98 09 08 00 00 c0 fd 7f .z.w.z.w........ 00c0ffd0 60 d3 07 00 c0 ff c0 00 - 60 d3 07 00 ff ff ff ff `.......`....... 00c0ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 00c0fff0 00 00 00 00 39 46 a9 77 - 98 09 08 00 00 00 00 00 ....9F.w........ 00c10000 01 00 00 00 88 d3 07 00 - 01 00 00 00 d0 d3 07 00 ................ 00c10010 01 00 00 00 e8 78 09 00 - 01 00 00 00 e0 5a 09 00 .....x.......Z.. 00c10020 01 00 00 00 b0 88 0a 00 - 01 00 00 00 d8 f3 0a 00 ................ 00c10030 01 00 00 00 90 2e 0a 00 - 40 00 c1 00 00 00 00 00 ........@....... 00c10040 48 00 c1 00 00 00 00 00 - 50 00 c1 00 00 00 00 00 H.......P....... 00c10050 58 00 c1 00 00 00 00 00 - 60 00 c1 00 00 00 00 00 X.......`....... 00c10060 68 00 c1 00 00 00 00 00 - 70 00 c1 00 00 00 00 00 h.......p....... 00c10070 78 00 c1 00 00 00 00 00 - 80 00 c1 00 00 00 00 00 x............... 00c10080 88 00 c1 00 00 00 00 00 - 90 00 c1 00 00 00 00 00 ................ 00c10090 98 00 c1 00 00 00 00 00 - a0 00 c1 00 00 00 00 00 ................ 线程 ID 0x50c 的状态转储 eax=00000000 ebx=ffffffff ecx=04825710 edx=00000000 esi=7fffffff edi=00000102 eip=77f88e73 esp=0197facc ebp=0197fb04 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:024dd09f=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FB04 74F57EE6 0000022C 00000230 00000000 00000004 ntdll!NtWaitForSingleObject 0197FBF0 74FB1DA9 00000001 0197FE84 0197FC7C 0197FD80 msafd!WSPSetSockOpt 0197FC54 76BD6F2E 00000001 0197FE84 0197FC7C 0197FD80 ws2_32!select 0197FFB0 76BD6E24 77E687DD 000A2788 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0197FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0197facc d2 bc f5 74 2c 02 00 00 - 01 00 00 00 f0 fa 97 01 ...t,........... 0197fadc 84 fe 97 01 78 fb 97 01 - 68 fb 97 01 20 17 89 cf ....x...h... ... 0197faec ec 7c c3 01 ff ff ff ff - ff ff ff 7f 50 18 09 00 .|..........P... 0197fafc 00 00 00 00 00 00 00 00 - f0 fb 97 01 e6 7e f5 74 .............~.t 0197fb0c 2c 02 00 00 30 02 00 00 - 00 00 00 00 04 00 00 00 ,...0........... 0197fb1c 80 fd 97 01 f0 40 0a 00 - 7c fc 97 01 00 00 00 00 .....@..|....... 0197fb2c 00 00 00 00 80 0f 05 fd - ff ff ff ff 50 18 09 00 ............P... 0197fb3c 2c 02 00 00 00 00 00 00 - e8 fb 97 01 01 00 00 00 ,............... 0197fb4c 00 00 00 00 a0 00 00 00 - 03 01 00 00 00 00 00 00 ................ 0197fb5c 00 00 00 00 00 00 00 00 - 00 00 00 00 80 0f 05 fd ................ 0197fb6c ff ff ff ff 01 00 00 00 - 00 fb 97 01 30 02 00 00 ............0... 0197fb7c 19 00 00 00 c0 11 f5 74 - ff ff ff ff c4 fb 97 01 .......t........ 0197fb8c 65 12 fb 74 5c 0a 00 00 - e8 fb 97 01 01 00 00 00 e..t\........... 0197fb9c 00 fc 97 01 fc fb 97 01 - 00 00 00 00 c4 fb 97 01 ................ 0197fbac 50 18 09 00 33 27 00 00 - 00 00 00 00 68 fb 97 01 P...3'......h... 0197fbbc 2c 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ,............... 0197fbcc 5c 0a 00 00 e8 fb 97 01 - 84 fb 97 01 1c fb 97 01 \............... 0197fbdc 24 fc 97 01 44 fc 97 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0197fbec ff ff ff ff 54 fc 97 01 - a9 1d fb 74 01 00 00 00 ....T......t.... 0197fbfc 84 fe 97 01 7c fc 97 01 - 80 fd 97 01 90 ff 97 01 ....|........... 线程 ID 0x498 的状态转储 eax=00000012 ebx=00000002 ecx=000a4558 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=019bfe5c ebp=019bfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0251d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019BFEA8 77DF2A00 019BFE80 00000001 00000000 019BFEA0 ntdll!NtWaitForMultipleObjects 019BFF04 77DF2A77 019BFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 019BFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 019BFF74 77C58FFD 019BFFA0 019BFFA4 019BFFA8 019BFF9C shlwapi!Ordinal271 019BFFAC 77C58F85 76BD1253 77E687DD 00000000 00070178 shlwapi!Ordinal394 019BFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x330 的状态转储 eax=00000001 ebx=00000004 ecx=00000101 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=019ffd24 ebp=019ffd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0255d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFD70 77E6A31D 019FFD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 019FFFB4 77E687DD 00000005 0008E044 7FFDA000 000A4F08 kernel32!WaitForMultipleObjects 019FFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x370 的状态转储 eax=000c0d78 ebx=80020000 ecx=000a35a0 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01a3fe28 ebp=01a3ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0259d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A3FF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01A3FFA8 78701C6C 0007C208 01A3FFEC 77E687DD 000A7A90 rpcrt4!TowerConstruct 01A3FFB4 77E687DD 000A7A90 00000000 00000000 000A7A90 rpcrt4!I_RpcServerInqTransportType 01A3FFEC 00000000 78701C54 000A7A90 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a3fe28 d4 74 71 78 18 01 00 00 - 54 ff a3 01 00 00 00 00 .tqx....T....... 01a3fe38 f8 65 9d 02 58 ff a3 01 - 90 c1 07 00 68 7a 0a 00 .e..X.......hz.. 01a3fe48 20 7f f8 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ..w............ 01a3fe58 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe68 02 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe78 00 00 00 00 00 00 00 00 - 00 00 00 00 1e 0e 00 00 ................ 01a3fe88 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe98 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fea8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3feb8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fec8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fed8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fee8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fef8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3ff08 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3ff18 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3ff28 00 00 00 00 60 f7 21 81 - 60 78 21 81 00 00 00 00 ....`.!.`x!..... 01a3ff38 60 78 21 81 f0 79 21 81 - 64 8c ef bb f3 da 42 80 `x!..y!.d.....B. 01a3ff48 a4 da 42 80 d4 4b 06 80 - c0 79 21 81 00 00 02 80 ..B..K...y!..... 01a3ff58 00 a2 2f 4d ff ff ff ff - 50 fe a3 01 00 00 02 80 ../M....P....... 线程 ID 0xe0 的状态转储 eax=00000000 ebx=80020000 ecx=00000080 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=01aafe28 ebp=01aaff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0260d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AAFF74 78716D9E 786F9AD0 0007E3A0 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 01AAFFA8 78701C6C 0007C208 01AAFFEC 77E687DD 000A8728 rpcrt4!TowerConstruct 01AAFFB4 77E687DD 000A8728 00000000 00000000 000A8728 rpcrt4!I_RpcServerInqTransportType 01AAFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x4ac 的状态转储 eax=04a9b5f0 ebx=000af2e0 ecx=00000101 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=01aeff84 ebp=01aeffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:0264d557=???????? 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01AEFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000AF2E0 ntdll!NtRemoveIoCompletion 01AEFFEC 00000000 74F54766 000AF2E0 00000000 000000C8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01aeff84 b8 47 f5 74 dc 02 00 00 - bc ff ae 01 b0 ff ae 01 .G.t............ 01aeff94 a4 ff ae 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01aeffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 20 0d 5b 03 ...........t .[. 01aeffb4 ec ff ae 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01aeffc4 00 00 00 00 e0 f2 0a 00 - 00 60 fd 7f 00 00 00 00 .........`...... 01aeffd4 c0 ff ae 01 00 00 00 00 - ff ff ff ff 56 18 e8 77 ............V..w 01aeffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01aefff4 66 47 f5 74 e0 f2 0a 00 - 00 00 00 00 c8 00 00 00 fG.t............ 01af0004 00 01 00 00 ff ee ff ee - 02 10 00 00 00 00 00 00 ................ 01af0014 00 fe 00 00 00 00 10 00 - 00 20 00 00 00 02 00 00 ......... ...... 01af0024 00 20 00 00 2f 02 00 00 - ff ef fd 7f 0b 00 08 06 . ../........... 01af0034 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01af0044 98 05 af 01 0f 00 00 00 - f8 ff ff ff 50 00 af 01 ............P... 01af0054 50 00 af 01 40 06 af 01 - 00 00 00 00 00 00 00 00 P...@........... 01af0064 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01af0074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01af0084 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01af0094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01af00a4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01af00b4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x49c 的状态转储 eax=01f8ff00 ebx=01f8ff74 ecx=00000002 edx=00000000 esi=77f88e68 edi=0000030c eip=77f88e73 esp=01f8ff58 ebp=01f8ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02aed52b=00000000 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F8FF7C 77E67837 0000030C 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f8ff58 0f 78 e6 77 0c 03 00 00 - 00 00 00 00 74 ff f8 01 .x.w........t... 01f8ff68 00 00 00 00 e0 1e b3 01 - 40 7e f8 77 00 44 5f 9a ........@~.w.D_. 01f8ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 0c 03 00 00 .... ..w7x.w.... 01f8ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 0c 03 00 00 .'......k..u.... 01f8ff98 c0 27 09 00 88 b0 06 00 - e0 1e b3 01 ec ff f8 01 .'.............. 01f8ffa8 e0 1e b3 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f8ffb8 dd 87 e6 77 e0 1e b3 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f8ffc8 e0 1e b3 01 00 50 fd 7f - fb 14 00 00 c0 ff f8 01 .....P.......... 01f8ffd8 fb 14 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01f8ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f8fff8 e0 1e b3 01 00 00 00 00 - 4c 43 44 54 02 00 00 00 ........LCDT.... 01f90008 78 00 00 00 0e 00 00 00 - 08 00 00 00 01 00 00 00 x............... 01f90018 05 00 00 00 3c 00 00 00 - 23 00 00 00 0f 00 00 00 ....<...#....... 01f90028 5f 00 00 00 14 00 00 00 - 90 01 00 00 20 20 43 6f _........... Co 01f90038 70 79 72 69 67 68 74 20 - 28 43 29 20 31 39 39 37 pyright (C) 1997 01f90048 2c 20 4d 69 63 72 6f 73 - 6f 66 74 20 43 6f 72 70 , Microsoft Corp 01f90058 6f 72 61 74 69 6f 6e 2e - 20 20 41 6c 6c 20 72 69 oration. All ri 01f90068 67 68 74 73 20 72 65 73 - 65 72 76 65 64 2e 20 20 ghts reserved. 01f90078 14 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01f90088 00 00 00 00 14 01 00 00 - 03 00 00 00 01 00 00 00 ................ 线程 ID 0x534 的状态转储 eax=05563000 ebx=0218ff74 ecx=021ceeec edx=00000000 esi=77f88e68 edi=00000344 eip=77f88e73 esp=0218ff58 ebp=0218ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02ced52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0218FF7C 77E67837 00000344 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x470 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0298ff24 ebp=0298ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:034ed4f7=4ed11003 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0298FF70 77E6A31D 0298FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0298FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0298FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0298ff24 b7 7a e6 77 02 00 00 00 - 48 ff 98 02 01 00 00 00 .z.w....H....... 0298ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0298ff44 00 00 00 00 00 04 00 00 - fc 03 00 00 a0 4d 20 81 .............M . 0298ff54 40 4c 20 81 06 b2 af 75 - 00 20 50 c0 b8 9c a1 81 @L ....u. P..... 0298ff64 b8 9c a1 81 00 00 00 00 - 00 00 00 00 b4 ff 98 02 ................ 0298ff74 1d a3 e6 77 48 ff 98 02 - 01 00 00 00 00 00 00 00 ...wH........... 0298ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0298ff94 a4 ff 98 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ................ 0298ffa4 00 04 00 00 fc 03 00 00 - 00 00 00 00 00 00 00 00 ................ 0298ffb4 ec ff 98 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f .......w........ 0298ffc4 00 00 00 00 00 00 00 00 - 00 30 fd 7f 98 25 fb 77 .........0...%.w 0298ffd4 c0 ff 98 02 98 25 fb 77 - ff ff ff ff 56 18 e8 77 .....%.w....V..w 0298ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0298fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02990004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02990014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02990024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02990034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02990044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02990054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x338 的状态转储 eax=00000102 ebx=02c0ff70 ecx=00010101 edx=00000000 esi=77f88e68 edi=00000414 eip=77f88e73 esp=02c0ff54 ebp=02c0ff78 iopl=0 nv up ei ng nz ac po cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000297 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:0376d527=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02C0FF78 77E67837 00000414 00000001 00000000 75BDA104 ntdll!NtWaitForSingleObject 00000001 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x3d0 的状态转储 eax=00000005 ebx=00000002 ecx=7ff9e000 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=02f0fe5c ebp=02f0fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03a6d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02F0FEA8 77DF2A00 02F0FE80 00000001 00000000 02F0FEA0 ntdll!NtWaitForMultipleObjects 02F0FF04 77DF2A77 02F0FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 02F0FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 02F0FF74 77C58FFD 02F0FFA0 02F0FFA4 02F0FFA8 02F0FF9C shlwapi!Ordinal271 02F0FFAC 77C58F85 00000000 77E687DD 00000000 00000000 shlwapi!Ordinal394 02F0FFEC 00000000 77C58F5C 00000000 00000000 00000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 02f0fe5c b7 7a e6 77 02 00 00 00 - 80 fe f0 02 01 00 00 00 .z.w............ 02f0fe6c 00 00 00 00 a0 fe f0 02 - 00 00 00 00 00 00 00 00 ................ 02f0fe7c 02 00 00 00 14 02 00 00 - 4c 04 00 00 cc fe f0 02 ........L....... 02f0fe8c db c3 f8 77 00 00 00 00 - cc fe f0 02 3d c4 f8 77 ...w........=..w 02f0fe9c 60 52 07 00 00 ba 3c dc - ff ff ff ff 04 ff f0 02 `R....<......... 02f0feac 00 2a df 77 80 fe f0 02 - 01 00 00 00 00 00 00 00 .*.w............ 02f0febc a0 fe f0 02 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 02f0fecc 00 00 00 00 14 02 00 00 - 4c 04 00 00 c4 d5 f8 77 ........L......w 02f0fedc 00 00 00 00 a0 41 c9 77 - 00 00 dd 76 90 4f a3 77 .....A.w...v.O.w 02f0feec 00 e0 f9 7f f8 b6 b0 77 - 00 00 00 00 cc e6 f9 7f .......w........ 02f0fefc 00 00 00 00 4c 04 00 00 - 20 ff f0 02 77 2a df 77 ....L... ...w*.w 02f0ff0c d0 fe f0 02 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 02f0ff1c 00 00 00 00 74 ff f0 02 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 02f0ff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 02f0ff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 48 ff f0 02 .....A.w ..wH... 02f0ff4c 48 ff f0 02 38 1f 07 00 - 00 00 00 00 00 f0 fd 7f H...8........... 02f0ff5c dc fe f0 02 01 00 00 00 - 42 06 f6 13 a0 41 c9 77 ........B....A.w 02f0ff6c 60 ea 00 00 01 00 00 00 - ac ff f0 02 fd 8f c5 77 `..............w 02f0ff7c a0 ff f0 02 a4 ff f0 02 - a8 ff f0 02 9c ff f0 02 ................ 02f0ff8c 60 ea 00 00 00 00 00 00 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x2b0 的状态转储 eax=05596000 ebx=00000488 ecx=02f5f9c4 edx=00000000 esi=02f5ff98 edi=77df7c12 eip=77df1d6b esp=02f5ff58 ebp=02f5ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:03abd52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:03abd52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:03abd52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02F5FF78 77535C36 02F5FF98 00000000 00000000 00000000 user32!TranslateMessageEx 02F5FFB4 77E687DD 00000488 77555428 000691BC 00000488 winmm!midiOutGetNumDevs 02F5FFEC 00000000 77535BB9 00000488 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 02f5ff58 4e 7c df 77 98 ff f5 02 - 00 00 00 00 00 00 00 00 N|.w............ 02f5ff68 00 00 00 00 88 04 00 00 - 00 00 00 00 12 7c df 77 .............|.w 02f5ff78 b4 ff f5 02 36 5c 53 77 - 98 ff f5 02 00 00 00 00 ....6\Sw........ 02f5ff88 00 00 00 00 00 00 00 00 - 28 54 55 77 bc 91 06 00 ........(TUw.... 02f5ff98 b6 01 40 01 bc 03 00 00 - 0c 08 5c 03 00 00 00 00 ..@.......\..... 02f5ffa8 e1 10 f6 13 b6 01 00 00 - 1a 02 00 00 ec ff f5 02 ................ 02f5ffb8 dd 87 e6 77 88 04 00 00 - 28 54 55 77 bc 91 06 00 ...w....(TUw.... 02f5ffc8 88 04 00 00 00 d0 f9 7f - 00 00 53 77 c0 ff f5 02 ..........Sw.... 02f5ffd8 00 00 53 77 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ..Sw....V..w...w 02f5ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 b9 5b 53 77 .............[Sw 02f5fff8 88 04 00 00 00 00 00 00 - 80 03 00 00 00 10 00 00 ................ 02f60008 06 00 00 00 11 00 00 00 - 00 00 00 00 ce 00 00 00 ................ 02f60018 65 02 00 00 1f 00 00 00 - 00 00 00 00 00 00 00 00 e............... 02f60028 30 0e f6 02 30 00 f6 02 - 00 00 00 00 00 00 00 00 0...0........... 02f60038 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02f60048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02f60058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02f60068 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02f60078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 02f60088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x454 的状态转储 eax=00000400 ebx=00000002 ecx=00000001 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=030efe5c ebp=030efea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:03c4d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 030EFEA8 77DF2A00 030EFE80 00000001 00000000 030EFEA0 ntdll!NtWaitForMultipleObjects 030EFF04 77DF2A77 030EFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 030EFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 030EFF74 77C58FFD 030EFFA0 030EFFA4 030EFFA8 030EFF9C shlwapi!Ordinal271 030EFFAC 77C58F85 76BD1253 77E687DD 00000000 01F8CF6C shlwapi!Ordinal394 030EFFEC 00000000 77C58F5C 00000000 00000000 06580000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 030efe5c b7 7a e6 77 02 00 00 00 - 80 fe 0e 03 01 00 00 00 .z.w............ 030efe6c 00 00 00 00 a0 fe 0e 03 - 00 00 00 00 00 00 00 00 ................ 030efe7c 02 00 00 00 14 02 00 00 - e4 04 00 00 00 00 00 00 ................ 030efe8c 7b fc 0e 03 00 00 00 00 - a4 93 59 05 88 91 59 05 {.........Y...Y. 030efe9c 01 00 00 00 00 ba 3c dc - ff ff ff ff 04 ff 0e 03 ......<......... 030efeac 00 2a df 77 80 fe 0e 03 - 01 00 00 00 00 00 00 00 .*.w............ 030efebc a0 fe 0e 03 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 030efecc 00 00 00 00 14 02 00 00 - e4 04 00 00 f4 64 fb 77 .............d.w 030efedc 70 16 f8 77 ff ff ff ff - 2c ff 0e 03 82 73 e6 77 p..w....,....s.w 030efeec 00 00 07 00 00 00 00 00 - 00 00 00 00 cc c6 f9 7f ................ 030efefc 00 00 00 00 e4 04 00 00 - 20 ff 0e 03 77 2a df 77 ........ ...w*.w 030eff0c d0 fe 0e 03 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 030eff1c 00 00 00 00 74 ff 0e 03 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 030eff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 030eff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 a1 96 bc 76 .....A.w ..w...v 030eff4c d0 91 59 05 48 1c 0b 00 - 00 00 00 00 82 96 bc 76 ..Y.H..........v 030eff5c 00 00 00 00 b4 d0 bc 76 - 6d 11 f6 13 a0 41 c9 77 .......vm....A.w 030eff6c 60 ea 00 00 01 00 00 00 - ac ff 0e 03 fd 8f c5 77 `..............w 030eff7c a0 ff 0e 03 a4 ff 0e 03 - a8 ff 0e 03 9c ff 0e 03 ................ 030eff8c 60 ea 00 00 6c cf f8 01 - 00 00 c5 77 00 00 00 00 `...l......w.... 线程 ID 0x3fc 的状态转储 eax=02a48018 ebx=00000000 ecx=03b1ee28 edx=00000000 esi=02aafb90 edi=00000000 eip=77df2268 esp=03b1ee64 ebp=03b1eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0467c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03B1EEA8 76DF217C 003F01EE 03B1FFA4 02A3BC68 00000000 user32!WaitMessage 03B1EF30 76DF1F65 02A3BC68 00070718 00000000 02A3BC68 browseui!Ordinal102 03B1FFAC 76C66950 02A3BC68 77E687DD 02A3BC68 00070718 browseui!Ordinal102 03B1FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 03b1ee64 92 23 df 76 a4 ff b1 03 - 68 bc a3 02 00 00 00 00 .#.v....h....... 03b1ee74 88 02 60 00 18 01 00 00 - ff ff 00 00 fb a7 05 a0 ..`............. 03b1ee84 a7 17 f6 13 bc 01 00 00 - 1a 02 00 00 48 51 07 00 ............HQ.. 03b1ee94 01 00 00 00 90 fb aa 02 - 01 44 00 80 a8 3e a4 02 .........D...>.. 03b1eea4 00 00 00 00 30 ef b1 03 - 7c 21 df 76 ee 01 3f 00 ....0...|!.v..?. 03b1eeb4 a4 ff b1 03 68 bc a3 02 - 00 00 00 00 00 00 00 00 ....h........... 03b1eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 03b1eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 03b1eee4 f4 ee b1 03 a4 ff b1 03 - 00 00 00 00 00 00 00 00 ................ 03b1eef4 00 00 00 00 00 00 00 00 - 20 ef b1 03 37 78 e6 77 ........ ...7x.w 03b1ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 03b1ef14 7f 1a f9 77 b4 ee b1 03 - 78 dd 06 00 dc ff b1 03 ...w....x....... 03b1ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff b1 03 Rz.vxi.v........ 03b1ef34 65 1f df 76 68 bc a3 02 - 18 07 07 00 00 00 00 00 e..vh........... 03b1ef44 68 bc a3 02 00 00 00 00 - 00 00 00 00 00 00 00 00 h............... 03b1ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03b1ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03b1ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03b1ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03b1ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x4e0 的状态转储 eax=00000000 ebx=00000000 ecx=02b25378 edx=00000000 esi=000f6420 edi=00000000 eip=77df2268 esp=041fee64 ebp=041feea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:04d5c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 041FEEA8 76DF217C 0089025A 041FFFA4 029D7FB8 00000000 user32!WaitMessage 041FEF30 76DF1F65 029D7FB8 00000000 00000000 029D7FB8 browseui!Ordinal102 041FFFAC 76C66950 029D7FB8 77E687DD 029D7FB8 00000000 browseui!Ordinal102 041FFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 041fee64 92 23 df 76 a4 ff 1f 04 - b8 7f 9d 02 00 00 00 00 .#.v............ 041fee74 a4 03 3b 00 02 80 00 00 - 00 00 00 00 00 00 00 00 ..;............. 041fee84 d6 17 f6 13 c7 01 00 00 - 1b 02 00 00 48 51 07 00 ............HQ.. 041fee94 01 00 00 00 20 64 0f 00 - 01 44 00 80 e8 35 9e 02 .... d...D...5.. 041feea4 00 00 00 00 30 ef 1f 04 - 7c 21 df 76 5a 02 89 00 ....0...|!.vZ... 041feeb4 a4 ff 1f 04 b8 7f 9d 02 - 00 00 00 00 00 00 00 00 ................ 041feec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 041feed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 041feee4 f4 ee 1f 04 a4 ff 1f 04 - 00 00 00 00 00 00 00 00 ................ 041feef4 00 00 00 00 00 00 00 00 - 20 ef 1f 04 37 78 e6 77 ........ ...7x.w 041fef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 041fef14 7f 1a f9 77 b4 ee 1f 04 - 78 dd 06 00 dc ff 1f 04 ...w....x....... 041fef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 1f 04 Rz.vxi.v........ 041fef34 65 1f df 76 b8 7f 9d 02 - 00 00 00 00 00 00 00 00 e..v............ 041fef44 b8 7f 9d 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041fef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041fef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041fef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041fef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041fef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x128 的状态转储 eax=029f01d8 ebx=00000000 ecx=0466ee28 edx=00000000 esi=029dd9d8 edi=00000000 eip=77df2268 esp=0466ee64 ebp=0466eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:051cc437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0466EEA8 76DF217C 00460256 0466FFA4 02A06138 00000000 user32!WaitMessage 0466EF30 76DF1F65 02A06138 00070718 00000000 02A06138 browseui!Ordinal102 0466FFAC 76C66950 02A06138 77E687DD 02A06138 00070718 browseui!Ordinal102 0466FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0466ee64 92 23 df 76 a4 ff 66 04 - 38 61 a0 02 00 00 00 00 .#.v..f.8a...... 0466ee74 3e 02 74 00 c8 04 00 00 - 63 c0 00 00 20 04 11 00 >.t.....c... ... 0466ee84 4e ae f5 13 92 02 00 00 - 48 01 00 00 48 51 07 00 N.......H...HQ.. 0466ee94 01 00 00 00 d8 d9 9d 02 - 01 44 00 80 f8 2f a2 02 .........D.../.. 0466eea4 00 00 00 00 30 ef 66 04 - 7c 21 df 76 56 02 46 00 ....0.f.|!.vV.F. 0466eeb4 a4 ff 66 04 38 61 a0 02 - 00 00 00 00 00 00 00 00 ..f.8a.......... 0466eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0466eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0466eee4 f4 ee 66 04 a4 ff 66 04 - 00 00 00 00 00 00 00 00 ..f...f......... 0466eef4 00 00 00 00 00 00 00 00 - 20 ef 66 04 37 78 e6 77 ........ .f.7x.w 0466ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0466ef14 7f 1a f9 77 b4 ee 66 04 - 78 dd 06 00 dc ff 66 04 ...w..f.x.....f. 0466ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 66 04 Rz.vxi.v......f. 0466ef34 65 1f df 76 38 61 a0 02 - 18 07 07 00 00 00 00 00 e..v8a.......... 0466ef44 38 61 a0 02 00 00 00 00 - 00 00 00 00 00 00 00 00 8a.............. 0466ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0466ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0466ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0466ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0466ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x52c 的状态转储 eax=0470e745 ebx=00000000 ecx=0470e773 edx=0470e7ad esi=048df2b1 edi=04790ec4 eip=02741bca esp=0470e77c ebp=0470e78c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: 02741bb2 56 push esi 02741bb3 8b742408 mov esi,[esp+0x8] ss:0526bd4f=d27bc7ff 02741bb7 85f6 test esi,esi 02741bb9 743f jz 0274a6fa 02741bbb 8b54240c mov edx,[esp+0xc] ss:0526bd4f=d27bc7ff 02741bbf 85d2 test edx,edx 02741bc1 7437 jz 0274a5fa 02741bc3 8a0e mov cl,[esi] ds:048df2b1=73 02741bc5 80f961 cmp cl,0x61 02741bc8 7208 jb 02749bd2 02741bca 80f97a cmp cl,0x7a 02741bcd 7703 ja 02749bd2 02741bcf 80c1e0 add cl,0xe0 02741bd2 8a02 mov al,[edx] ds:0470e7ad=73 02741bd4 3c61 cmp al,0x61 02741bd6 7206 jb 027457de 02741bd8 3c7a cmp al,0x7a 02741bda 7702 ja 02741fde 02741bdc 04e0 add al,0xe0 02741bde 3ac8 cmp cl,al 02741be0 750c jnz 02749fee 02741be2 84c9 test cl,cl *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0470E78C 02765334 048DF2B0 0470E7AC 00000000 0470E914 ! 0470E854 0276551F 00000000 0492D9F2 00000000 0443B560 ! 0470EC2C 0276BA38 00000000 04490BC0 0443B560 01D38410 ! 0470EC6C 02789821 00000001 0470EC98 0470ECC4 75BDAE0E ! 0470ECDC 75BDB0FD 75BDA780 01D38460 77E60013 0470ED8C ! 0470ED50 75BDA83A 01CDA320 75A91A52 01D9FF20 00000001 mshtml! 0470ED8C 77DF1D0A 00BD0346 000005CC 00003C88 00000000 mshtml! 0470EDAC 77DF1BC8 75A918FC 00BD0346 00000113 00003C88 user32!DispatchMessageW 0470EE38 77DF1CEF 0470EE74 00000000 76DD4C9F 0470EE74 user32!GetAppCompatFlags2 0470EE74 00000113 00003C88 00000000 13F617C6 000001C7 user32!DispatchMessageW *----> 原始堆栈转储 <----* 0470e77c 24 e3 83 04 8a 1c 74 02 - b0 f2 8d 04 ac e7 70 04 $.....t.......p. 0470e78c 54 e8 70 04 34 53 76 02 - b0 f2 8d 04 ac e7 70 04 T.p.4Sv.......p. 0470e79c 00 00 00 00 14 e9 70 04 - 24 e3 83 04 60 b5 43 04 ......p.$...`.C. 0470e7ac 65 73 74 72 65 6c 6c 61 - 37 31 00 04 00 e8 70 04 estrella71....p. 0470e7bc fa 6b 76 02 00 00 00 00 - 01 00 00 00 60 b5 43 04 .kv.........`.C. 0470e7cc c0 bd ba 02 e8 d9 92 04 - 00 00 8c 02 00 00 00 00 ................ 0470e7dc f0 ed 5f 04 2a c4 78 02 - 01 00 00 00 00 00 00 00 .._.*.x......... 0470e7ec 00 00 00 00 c0 bd ba 02 - 00 00 00 00 e4 d9 92 04 ................ 0470e7fc 7b 38 74 02 48 54 7e 02 - e8 d9 92 04 60 b5 43 04 {8t.HT~.....`.C. 0470e80c c0 bd ba 02 cc 6e 76 02 - e8 d9 92 04 60 b5 43 04 .....nv.....`.C. 0470e81c e0 56 7e 02 78 bc ba 02 - c7 37 74 02 48 54 7e 02 .V~.x....7t.HT~. 0470e82c 06 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0470e83c 00 00 00 00 00 00 00 00 - 01 00 00 00 00 00 00 00 ................ 0470e84c 00 00 00 00 60 b5 43 04 - 2c ec 70 04 1f 55 76 02 ....`.C.,.p..Uv. 0470e85c 00 00 00 00 f2 d9 92 04 - 00 00 00 00 60 b5 43 04 ............`.C. 0470e86c 01 00 00 00 78 bc ba 02 - b7 54 76 02 24 e3 83 04 ....x....Tv.$... 0470e87c 14 e9 70 04 b0 87 1d 06 - 01 00 00 00 4d a5 76 02 ..p.........M.v. 0470e88c 78 bc ba 02 14 e9 70 04 - 00 00 00 00 00 00 00 00 x.....p......... 0470e89c 60 b5 43 04 00 00 00 00 - 60 b5 43 04 00 00 00 00 `.C.....`.C..... 0470e8ac 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x3c0 的状态转储 eax=04bbfea8 ebx=00000002 ecx=05599188 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=04bbfe5c ebp=04bbfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0571d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04BBFEA8 77DF2A00 04BBFE80 00000001 00000000 04BBFEA0 ntdll!NtWaitForMultipleObjects 04BBFF04 77DF2A77 04BBFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 04BBFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 04BBFF74 77C58FFD 04BBFFA0 04BBFFA4 04BBFFA8 04BBFF9C shlwapi!Ordinal271 04BBFFAC 77C58F85 77FB64F4 77E687DD 00000000 0197FA10 shlwapi!Ordinal394 04BBFFEC 00000000 77C58F5C 00000000 00000000 DCDCD8DB shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 04bbfe5c b7 7a e6 77 02 00 00 00 - 80 fe bb 04 01 00 00 00 .z.w............ 04bbfe6c 00 00 00 00 a0 fe bb 04 - 00 00 00 00 00 00 00 00 ................ 04bbfe7c 02 00 00 00 14 02 00 00 - e0 06 00 00 00 00 00 00 ................ 04bbfe8c 00 00 00 00 98 9f 85 04 - ab 00 bd 76 c8 4e 53 03 ...........v.NS. 04bbfe9c 88 91 59 05 00 ba 3c dc - ff ff ff ff 04 ff bb 04 ..Y...<......... 04bbfeac 00 2a df 77 80 fe bb 04 - 01 00 00 00 00 00 00 00 .*.w............ 04bbfebc a0 fe bb 04 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 04bbfecc 00 00 00 00 14 02 00 00 - e0 06 00 00 a3 17 bc 76 ...............v 04bbfedc 48 4b 14 00 30 ff bb 04 - f0 fd bc 76 e5 03 00 00 HK..0......v.... 04bbfeec ee d0 bc 76 68 cf 5c 03 - 00 00 00 00 cc 76 f9 7f ...vh.\......v.. 04bbfefc 00 00 00 00 e0 06 00 00 - 20 ff bb 04 77 2a df 77 ........ ...w*.w 04bbff0c d0 fe bb 04 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 04bbff1c 00 00 00 00 74 ff bb 04 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 04bbff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 04bbff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 00 bf 55 03 .....A.w ..w..U. 04bbff4c 60 d1 82 04 00 bf 55 03 - 01 00 00 00 49 d0 bc 76 `.....U.....I..v 04bbff5c 60 d1 82 04 8c ff bb 04 - 73 10 f6 13 a0 41 c9 77 `.......s....A.w 04bbff6c 60 ea 00 00 01 00 00 00 - ac ff bb 04 fd 8f c5 77 `..............w 04bbff7c a0 ff bb 04 a4 ff bb 04 - a8 ff bb 04 9c ff bb 04 ................ 04bbff8c 60 ea 00 00 10 fa 97 01 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x4f0 的状态转储 eax=00000090 ebx=00000002 ecx=00000004 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=04cefe5c ebp=04cefea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0584d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04CEFEA8 77DF2A00 04CEFE80 00000001 00000000 04CEFEA0 ntdll!NtWaitForMultipleObjects 04CEFF04 77DF2A77 04CEFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 04CEFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 04CEFF74 77C58FFD 04CEFFA0 04CEFFA4 04CEFFA8 04CEFF9C shlwapi!Ordinal271 04CEFFAC 77C58F85 77FB64F4 77E687DD 00000000 0197FA10 shlwapi!Ordinal394 04CEFFEC 00000000 77C58F5C 00000000 00000000 00000000 shlwapi!Ordinal394 *----> 原始堆栈转储 <----* 04cefe5c b7 7a e6 77 02 00 00 00 - 80 fe ce 04 01 00 00 00 .z.w............ 04cefe6c 00 00 00 00 a0 fe ce 04 - 00 00 00 00 00 00 00 00 ................ 04cefe7c 02 00 00 00 14 02 00 00 - 8c 07 00 00 50 ec 58 05 ............P.X. 04cefe8c 30 60 52 05 50 ec 58 05 - 78 01 07 00 48 ec 58 05 0`R.P.X.x...H.X. 04cefe9c dc fe ce 04 00 ba 3c dc - ff ff ff ff 04 ff ce 04 ......<......... 04cefeac 00 2a df 77 80 fe ce 04 - 01 00 00 00 00 00 00 00 .*.w............ 04cefebc a0 fe ce 04 00 00 00 00 - 60 ea 00 00 a0 41 c9 77 ........`....A.w 04cefecc 00 00 00 00 14 02 00 00 - 8c 07 00 00 20 ff ce 04 ............ ... 04cefedc f4 64 fb 77 70 16 f8 77 - ff ff ff ff 30 ff ce 04 .d.wp..w....0... 04cefeec 82 73 e6 77 00 00 07 00 - 00 00 00 00 cc 56 f9 7f .s.w.........V.. 04cefefc 00 00 00 00 8c 07 00 00 - 20 ff ce 04 77 2a df 77 ........ ...w*.w 04ceff0c d0 fe ce 04 c0 41 c9 77 - 60 ea 00 00 41 00 00 00 .....A.w`...A... 04ceff1c 00 00 00 00 74 ff ce 04 - ff 64 c5 77 01 00 00 00 ....t....d.w.... 04ceff2c c0 41 c9 77 00 00 00 00 - 60 ea 00 00 41 00 00 00 .A.w....`...A... 04ceff3c 00 00 00 00 a0 41 c9 77 - 20 7f f8 77 c4 96 bc 76 .....A.w ..w...v 04ceff4c 01 00 00 00 a8 47 79 04 - 00 00 00 00 82 96 bc 76 .....Gy........v 04ceff5c 00 00 00 00 b4 d0 bc 76 - 1a d6 f5 13 a0 41 c9 77 .......v.....A.w 04ceff6c 60 ea 00 00 01 00 00 00 - ac ff ce 04 fd 8f c5 77 `..............w 04ceff7c a0 ff ce 04 a4 ff ce 04 - a8 ff ce 04 9c ff ce 04 ................ 04ceff8c 60 ea 00 00 10 fa 97 01 - 00 00 c5 77 00 00 00 00 `..........w.... 线程 ID 0x4e8 的状态转储 eax=051130d8 ebx=00000000 ecx=00000002 edx=00000000 esi=77f41bac edi=330107fd eip=37f02d10 esp=05112fa4 ebp=0511302c iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: xe_ExtTextOut 37f02cf0 55 push ebp 37f02cf1 8bec mov ebp,esp 37f02cf3 6aff push 0xff 37f02cf5 68a0a1f037 push 0x37f0a1a0 37f02cfa 682050f037 push 0x37f05020 37f02cff 64a100000000 mov eax,fs:[00000000] fs:00000000=???????? 37f02d05 50 push eax 37f02d06 64892500000000 mov fs:[00000000],esp fs:00000000=???????? 37f02d0d 83ec78 sub esp,0x78 错误 ->37f02d10 53 push ebx 37f02d11 56 push esi 37f02d12 57 push edi 37f02d13 e8e8e3ffff call 37f01100 37f02d18 a1989df037 mov eax,[37f09d98] ds:37f09d98=00000001 37f02d1d 85c0 test eax,eax 37f02d1f 0f8460010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d25 8b5d1c mov ebx,[ebp+0x1c] ss:05c705fe=???????? 37f02d28 85db test ebx,ebx 37f02d2a 0f8455010000 je xe_ExtTextOut+0x195 (37f02e85) 37f02d30 8b7520 mov esi,[ebp+0x20] ss:05c705fe=???????? 37f02d33 83fe01 cmp esi,0x1 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0511302C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051130E8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051131A4 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113260 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 0511331C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051133D8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113494 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113550 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 0511360C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051136C8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113784 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113840 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051138FC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051139B8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113A74 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113B30 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113BEC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113CA8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113D64 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113E20 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113EDC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05113F98 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114054 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114110 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051141CC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114288 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114344 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114400 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051144BC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114578 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114634 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051146F0 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051147AC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114868 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114924 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051149E0 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114A9C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114B58 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114C14 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114CD0 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114D8C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114E48 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114F04 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05114FC0 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 0511507C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115138 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051151F4 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051152B0 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 0511536C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115428 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051154E4 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051155A0 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 0511565C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115718 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051157D4 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115890 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 0511594C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115A08 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115AC4 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115B80 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115C3C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115CF8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115DB4 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115E70 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115F2C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05115FE8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051160A4 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116160 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 0511621C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051162D8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116394 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116450 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 0511650C 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051165C8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116684 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116740 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051167FC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051168B8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116974 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116A30 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116AEC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116BA8 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116C64 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116D20 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116DDC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116E98 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05116F54 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05117010 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051170CC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05117188 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05117244 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05117300 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051173BC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05117478 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05117534 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051175F0 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051176AC 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05117768 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 05117824 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut 051178E0 37F02EAB 330107FD 00000000 00000000 00000002 !xe_ExtTextOut *----> 原始堆栈转储 <----* 05112fa4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05112fb4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05112fc4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05112fd4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05112fe4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05112ff4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05113004 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05113014 00 00 00 00 f0 2b 11 05 - d8 30 11 05 20 50 f0 37 .....+...0.. P.7 05113024 a0 a1 f0 37 ff ff ff ff - e8 30 11 05 ab 2e f0 37 ...7.....0.....7 05113034 fd 07 01 33 00 00 00 00 - 00 00 00 00 02 00 00 00 ...3............ 05113044 e8 eb 14 05 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05113054 fd 07 01 33 ac 1b f4 77 - 00 00 00 00 00 00 00 00 ...3...w........ 05113064 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05113074 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05113084 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05113094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051130a4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051130b4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051130c4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051130d4 f0 2b 11 05 94 31 11 05 - 20 50 f0 37 a0 a1 f0 37 .+...1.. P.7...7 线程 ID 0x520 的状态转储 eax=00000000 ebx=00000000 ecx=044ef2e0 edx=00000000 esi=04944b08 edi=00000000 eip=77df2268 esp=051fee64 ebp=051feea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:05d5c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 051FEEA8 76DF217C 005100D6 051FFFA4 0495E488 00000000 user32!WaitMessage 051FEF30 76DF1F65 0495E488 00070718 00000000 0495E488 browseui!Ordinal102 051FFFAC 76C66950 0495E488 77E687DD 0495E488 00070718 browseui!Ordinal102 051FFFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 051fee64 92 23 df 76 a4 ff 1f 05 - 88 e4 95 04 00 00 00 00 .#.v............ 051fee74 06 05 0f 00 02 80 00 00 - 00 00 00 00 00 00 00 00 ................ 051fee84 d6 17 f6 13 c7 01 00 00 - 1b 02 00 00 48 51 07 00 ............HQ.. 051fee94 01 00 00 00 08 4b 94 04 - 01 44 00 80 78 ef 5a 03 .....K...D..x.Z. 051feea4 00 00 00 00 30 ef 1f 05 - 7c 21 df 76 d6 00 51 00 ....0...|!.v..Q. 051feeb4 a4 ff 1f 05 88 e4 95 04 - 00 00 00 00 00 00 00 00 ................ 051feec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 051feed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 051feee4 f4 ee 1f 05 a4 ff 1f 05 - 00 00 00 00 00 00 00 00 ................ 051feef4 00 00 00 00 00 00 00 00 - 20 ef 1f 05 37 78 e6 77 ........ ...7x.w 051fef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 051fef14 7f 1a f9 77 b4 ee 1f 05 - 78 dd 06 00 dc ff 1f 05 ...w....x....... 051fef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 1f 05 Rz.vxi.v........ 051fef34 65 1f df 76 88 e4 95 04 - 18 07 07 00 00 00 00 00 e..v............ 051fef44 88 e4 95 04 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051fef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051fef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051fef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051fef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 051fef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x308 的状态转储 eax=7ff92000 ebx=80020000 ecx=04a89958 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=05cbfe28 ebp=05cbff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0681d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 05CBFF74 78716D9E 786F9A00 0007E3A0 01A3FA9C 00000022 ntdll!ZwReplyWaitReceivePortEx 05CBFFA8 78701C6C 049B4DF8 05CBFFEC 77E687DD 035BABD0 rpcrt4!TowerConstruct 05CBFFB4 77E687DD 035BABD0 01A3FA9C 00000022 035BABD0 rpcrt4!I_RpcServerInqTransportType 05CBFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x51c 的状态转储 eax=00000000 ebx=00000000 ecx=061a20e8 edx=00000000 esi=0484d058 edi=00000000 eip=77df2268 esp=05d3ee64 ebp=05d3eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0689c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 05D3EEA8 76DF217C 07BC04BA 05D3FFA4 035B8658 00000000 user32!WaitMessage 05D3EF30 76DF1F65 035B8658 00070718 00000000 035B8658 browseui!Ordinal102 05D3FFAC 76C66950 035B8658 77E687DD 035B8658 00070718 browseui!Ordinal102 05D3FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 05d3ee64 92 23 df 76 a4 ff d3 05 - 58 86 5b 03 00 00 00 00 .#.v....X.[..... 05d3ee74 b8 04 2d 01 13 01 00 00 - e8 28 00 00 00 00 00 00 ..-......(...... 05d3ee84 d6 17 f6 13 c7 01 00 00 - 1b 02 00 00 48 51 07 00 ............HQ.. 05d3ee94 01 00 00 00 58 d0 84 04 - 01 44 00 80 00 28 7a 04 ....X....D...(z. 05d3eea4 00 00 00 00 30 ef d3 05 - 7c 21 df 76 ba 04 bc 07 ....0...|!.v.... 05d3eeb4 a4 ff d3 05 58 86 5b 03 - 00 00 00 00 00 00 00 00 ....X.[......... 05d3eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 05d3eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 05d3eee4 f4 ee d3 05 a4 ff d3 05 - 00 00 00 00 00 00 00 00 ................ 05d3eef4 00 00 00 00 00 00 00 00 - 20 ef d3 05 37 78 e6 77 ........ ...7x.w 05d3ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 05d3ef14 7f 1a f9 77 b4 ee d3 05 - 78 dd 06 00 dc ff d3 05 ...w....x....... 05d3ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff d3 05 Rz.vxi.v........ 05d3ef34 65 1f df 76 58 86 5b 03 - 18 07 07 00 00 00 00 00 e..vX.[......... 05d3ef44 58 86 5b 03 00 00 00 00 - 00 00 00 00 00 00 00 00 X.[............. 05d3ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05d3ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05d3ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05d3ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 05d3ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x468 的状态转储 eax=05598088 ebx=00000000 ecx=00000200 edx=00000000 esi=054800f0 edi=00000000 eip=77df2268 esp=0682ee64 ebp=0682eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:0738c437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0682EEA8 76DF217C 00160404 0682FFA4 03552258 00000000 user32!WaitMessage 0682EF30 76DF1F65 03552258 00070718 00000000 03552258 browseui!Ordinal102 0682FFAC 76C66950 03552258 77E687DD 03552258 00070718 browseui!Ordinal102 0682FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0682ee64 92 23 df 76 a4 ff 82 06 - 58 22 55 03 00 00 00 00 .#.v....X"U..... 0682ee74 5e 04 0f 00 02 80 00 00 - 00 00 00 00 00 00 00 00 ^............... 0682ee84 e6 17 f6 13 e4 01 00 00 - 1f 02 00 00 48 51 07 00 ............HQ.. 0682ee94 01 00 00 00 f0 00 48 05 - 01 44 00 80 40 c1 a3 02 ......H..D..@... 0682eea4 00 00 00 00 30 ef 82 06 - 7c 21 df 76 04 04 16 00 ....0...|!.v.... 0682eeb4 a4 ff 82 06 58 22 55 03 - 00 00 00 00 00 00 00 00 ....X"U......... 0682eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0682eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0682eee4 f4 ee 82 06 a4 ff 82 06 - 00 00 00 00 00 00 00 00 ................ 0682eef4 00 00 00 00 00 00 00 00 - 20 ef 82 06 37 78 e6 77 ........ ...7x.w 0682ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0682ef14 7f 1a f9 77 b4 ee 82 06 - 78 dd 06 00 dc ff 82 06 ...w....x....... 0682ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 82 06 Rz.vxi.v........ 0682ef34 65 1f df 76 58 22 55 03 - 18 07 07 00 00 00 00 00 e..vX"U......... 0682ef44 58 22 55 03 00 00 00 00 - 00 00 00 00 00 00 00 00 X"U............. 0682ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0682ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0682ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0682ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0682ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 发生应用程序意外错误: 应用程序: iexplore.exe (pid=1344) 时间: 2003-9-17 @ 15:27:05.375 意外情况编号: c00000fd (堆栈溢出) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 604 svchost.exe 800 Explorer.exe 832 Rundll32.exe 1044 daemon.exe 1052 RealPlay.exe 1076 internat.exe 1084 AcroTray.exe 884 XDICT.exe 916 wuauclt.exe 1096 flashget.exe 900 conime.exe 1344 iexplore.exe 880 drwtsn32.exe 0 _Total.exe (00400000 - 00412000) (77F80000 - 77FFA000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77C50000 - 77C9A000) (77D90000 - 77DED000) (786F0000 - 7875E000) (75E00000 - 75E1A000) (76C40000 - 76D50000) (77B30000 - 77BB9000) (78F90000 - 791D6000) (77A30000 - 77B1C000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (78000000 - 78046000) (76DD0000 - 76E98000) (72C50000 - 72CD5000) (77990000 - 77A2B000) (76EA0000 - 76EAB000) (76BC0000 - 76C33000) (77810000 - 7784D000) (77080000 - 770A3000) (10000000 - 1002E000) (777E0000 - 777E7000) (75950000 - 75956000) (76590000 - 76602000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (6D990000 - 6DA3B000) (77BF0000 - 77C4E000) (01780000 - 01788000) (017D0000 - 017E0000) (76D50000 - 76DA3000) (75CF0000 - 75D72000) (74FD0000 - 74FDA000) (74F50000 - 74F6D000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (74F90000 - 74F97000) (75A50000 - 75A55000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75A90000 - 75CCE000) (75D80000 - 75DF7000) (75A60000 - 75A88000) (020D0000 - 0225D000) (77530000 - 77560000) (76AF0000 - 76B2D000) (77520000 - 77529000) (773C0000 - 773C8000) (773D0000 - 773E3000) (68EF0000 - 68F0F000) (72750000 - 72759000) (51000000 - 51044000) (72800000 - 72806000) (75A40000 - 75A48000) (6AC80000 - 6ACBC000) (64840000 - 64883000) (6DC30000 - 6DC42000) (71200000 - 71241000) (75010000 - 75020000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (75CE0000 - 75CE6000) (68740000 - 6874C000) (773A0000 - 773B5000) (751C0000 - 751D5000) 线程 ID 0x4e8 的状态转储 eax=00000000 ebx=00000000 ecx=00000002 edx=00000000 esi=77f41bac edi=45010a47 eip=37f02ea4 esp=00033000 ebp=000330b0 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: xe_ExtTextOut 37f02e90 8b551c mov edx,[ebp+0x1c] ss:00b90682=???????? 37f02e93 52 push edx 37f02e94 8b4518 mov eax,[ebp+0x18] ss:00b90682=???????? 37f02e97 50 push eax 37f02e98 8b4d14 mov ecx,[ebp+0x14] ss:00b90682=???????? 37f02e9b 51 push ecx 37f02e9c 8b5510 mov edx,[ebp+0x10] ss:00b90682=???????? 37f02e9f 52 push edx 37f02ea0 8b450c mov eax,[ebp+0xc] ss:00b90682=???????? 37f02ea3 50 push eax 错误 ->37f02ea4 57 push edi 37f02ea5 ff155ca0f037 call dword ptr [37f0a05c] ds:37f0a05c=77f47214 37f02eab e8a0e1ffff call 37f01050 37f02eb0 b801000000 mov eax,0x1 37f02eb5 8b4df0 mov ecx,[ebp+0xf0] ss:00b90682=???????? 37f02eb8 64890d00000000 mov fs:[00000000],ecx fs:00000000=???????? 37f02ebf 5f pop edi 37f02ec0 5e pop esi 37f02ec1 5b pop ebx 37f02ec2 8be5 mov esp,ebp 37f02ec4 5d pop ebp 37f02ec5 c22000 ret 0x20 *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 000330B0 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003316C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033228 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000332E4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000333A0 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003345C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033518 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000335D4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033690 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003374C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033808 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000338C4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033980 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033A3C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033AF8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033BB4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033C70 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033D2C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033DE8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033EA4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00033F60 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003401C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000340D8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034194 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034250 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003430C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000343C8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034484 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034540 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000345FC 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000346B8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034774 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034830 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000348EC 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000349A8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034A64 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034B20 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034BDC 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034C98 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034D54 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034E10 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034ECC 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00034F88 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035044 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035100 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000351BC 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035278 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035334 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000353F0 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000354AC 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035568 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035624 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000356E0 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003579C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035858 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035914 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000359D0 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035A8C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035B48 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035C04 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035CC0 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035D7C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035E38 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035EF4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00035FB0 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003606C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036128 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000361E4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000362A0 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003635C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036418 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000364D4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036590 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003664C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036708 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000367C4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036880 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003693C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000369F8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036AB4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036B70 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036C2C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036CE8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036DA4 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036E60 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036F1C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00036FD8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00037094 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00037150 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 0003720C 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000372C8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00037384 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00037440 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000374FC 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000375B8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00037674 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00037730 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000377EC 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 000378A8 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut 00037964 37F02EAB 45010A47 00000000 00000000 00000002 !xe_ExtTextOut *----> 原始堆栈转储 <----* 00033000 00 00 00 00 00 00 00 00 - 02 00 00 00 cc da 06 00 ................ 00033010 00 00 00 00 00 00 00 00 - 00 00 00 00 47 0a 01 45 ............G..E 00033020 ac 1b f4 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 00033030 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033040 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033050 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033060 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033070 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033080 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033090 00 00 00 00 00 00 00 00 - 00 00 00 00 4c 2c 03 00 ............L,.. 000330a0 5c 31 03 00 20 50 f0 37 - a0 a1 f0 37 ff ff ff ff \1.. P.7...7.... 000330b0 6c 31 03 00 ab 2e f0 37 - 47 0a 01 45 00 00 00 00 l1.....7G..E.... 000330c0 00 00 00 00 02 00 00 00 - cc da 06 00 00 00 00 00 ................ 000330d0 00 00 00 00 00 00 00 00 - 47 0a 01 45 ac 1b f4 77 ........G..E...w 000330e0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 000330f0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033100 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033110 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033120 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 00033130 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x51c 的状态转储 eax=7ffdd000 ebx=80020000 ecx=000918e0 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=00bcfe28 ebp=00bcff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0172d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00BCFF74 78716D9E 786F9AD0 0007E3A0 4007DEBC 00000070 ntdll!ZwReplyWaitReceivePortEx 00BCFFA8 78701C6C 0007C208 00BCFFEC 77E687DD 0007D050 rpcrt4!TowerConstruct 00BCFFB4 77E687DD 0007D050 4007DEBC 00000070 0007D050 rpcrt4!I_RpcServerInqTransportType 00BCFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x308 的状态转储 eax=77a94639 ebx=00000102 ecx=0007d360 edx=00000000 esi=77f882f8 edi=00c0ff74 eip=77f88303 esp=00c0ff60 ebp=00c0ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0176d533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 00C0FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 00c0ff60 17 76 e6 77 00 00 00 00 - 74 ff c0 00 b5 77 e6 77 .v.w....t....w.w 00c0ff70 98 09 08 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 ......<.....0u.. 00c0ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 00c0ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 00c0ffa0 98 09 08 00 ec ff c0 00 - 98 09 08 00 53 46 a9 77 ............SF.w 00c0ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 98 09 08 00 .z.w.z.w...w.... 00c0ffc0 d8 7a a4 77 c3 7a a4 77 - 98 09 08 00 00 c0 fd 7f .z.w.z.w........ 00c0ffd0 60 d3 07 00 c0 ff c0 00 - 60 d3 07 00 ff ff ff ff `.......`....... 00c0ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 00c0fff0 00 00 00 00 39 46 a9 77 - 98 09 08 00 00 00 00 00 ....9F.w........ 00c10000 01 00 00 00 88 d3 07 00 - 01 00 00 00 d0 d3 07 00 ................ 00c10010 01 00 00 00 e8 5b 09 00 - 01 00 00 00 60 c1 07 00 .....[......`... 00c10020 01 00 00 00 70 5b 09 00 - 01 00 00 00 f8 ba 0a 00 ....p[.......... 00c10030 01 00 00 00 00 9e 98 02 - 40 00 c1 00 00 00 00 00 ........@....... 00c10040 48 00 c1 00 00 00 00 00 - 50 00 c1 00 00 00 00 00 H.......P....... 00c10050 58 00 c1 00 00 00 00 00 - 60 00 c1 00 00 00 00 00 X.......`....... 00c10060 68 00 c1 00 00 00 00 00 - 70 00 c1 00 00 00 00 00 h.......p....... 00c10070 78 00 c1 00 00 00 00 00 - 80 00 c1 00 00 00 00 00 x............... 00c10080 88 00 c1 00 00 00 00 00 - 90 00 c1 00 00 00 00 00 ................ 00c10090 98 00 c1 00 00 00 00 00 - a0 00 c1 00 00 00 00 00 ................ 线程 ID 0x520 的状态转储 eax=00000000 ebx=77f88e68 ecx=00000001 edx=00000000 esi=00000000 edi=00000001 eip=77f88e73 esp=0197facc ebp=0197fb04 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:024dd09f=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0197FB04 74F57EE6 0000027C 000004D0 00000001 00000004 ntdll!NtWaitForSingleObject 0197FBF0 74FB1DA9 00000005 0197FE84 0197FC7C 0197FD80 msafd!WSPSetSockOpt 0197FC54 76BD6F2E 00000005 0197FE84 0197FC7C 0197FD80 ws2_32!select 0197FFB0 76BD6E24 77E687DD 000A2940 7FFDE000 00000040 wininet!InternetSetStatusCallbackA 0197FFEC 00000000 00000000 00000000 00000000 00000000 wininet!InternetSetStatusCallbackA *----> 原始堆栈转储 <----* 0197facc 62 bb f5 74 7c 02 00 00 - 01 00 00 00 f0 fa 97 01 b..t|........... 0197fadc 84 fe 97 01 98 c3 98 02 - 88 c3 98 02 98 00 00 00 ................ 0197faec ed 7c c3 01 c0 b4 b3 ff - ff ff ff ff d0 74 0a 00 .|...........t.. 0197fafc 00 00 00 00 00 00 00 00 - f0 fb 97 01 e6 7e f5 74 .............~.t 0197fb0c 7c 02 00 00 d0 04 00 00 - 01 00 00 00 04 00 00 00 |............... 0197fb1c 80 fd 97 01 40 fa 10 00 - 7c fc 97 01 80 f3 cd ff ....@...|....... 0197fb2c ff ff ff ff 80 38 c8 4d - ff ff ff ff a8 02 00 00 .....8.M........ 0197fb3c 7c 02 00 00 00 00 00 00 - 00 00 00 00 90 fb 97 01 |............... 0197fb4c 17 20 01 00 80 fb 97 01 - 10 00 00 00 00 00 00 00 . .............. 0197fb5c 01 00 00 00 80 f3 cd ff - ff ff ff ff 00 00 00 00 ................ 0197fb6c ff ff ff ff 01 00 00 00 - d0 74 0a 00 7c 02 00 00 .........t..|... 0197fb7c c8 60 11 00 24 fc 97 01 - 01 00 00 00 00 00 00 00 .`..$........... 0197fb8c 20 00 00 00 00 00 00 00 - 01 00 00 00 00 00 00 00 ............... 0197fb9c ff ff ff ff 90 fb 97 01 - 00 00 00 00 00 00 00 00 ................ 0197fbac d0 74 0a 00 fc fb 97 01 - 04 00 00 00 88 c3 98 02 .t.............. 0197fbbc 8c 00 00 00 09 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0197fbcc a8 02 00 00 24 fc 97 01 - 04 c4 98 02 1c fb 97 01 ....$........... 0197fbdc 24 fc 97 01 44 fc 97 01 - 36 df f5 74 78 30 f5 74 $...D...6..tx0.t 0197fbec ff ff ff ff 54 fc 97 01 - a9 1d fb 74 05 00 00 00 ....T......t.... 0197fbfc 84 fe 97 01 7c fc 97 01 - 80 fd 97 01 90 ff 97 01 ....|........... 线程 ID 0x4ec 的状态转储 eax=019bffdc ebx=00000002 ecx=019bfe64 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=019bfe5c ebp=019bfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0251d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019BFEA8 77DF2A00 019BFE80 00000001 00000000 019BFEA0 ntdll!NtWaitForMultipleObjects 019BFF04 77DF2A77 019BFED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 019BFF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 019BFF74 77C58FFD 019BFFA0 019BFFA4 019BFFA8 019BFF9C shlwapi!Ordinal271 019BFFAC 77C58F85 76BD1253 77E687DD 00000000 00070178 shlwapi!Ordinal394 019BFFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x3c0 的状态转储 eax=00000001 ebx=77f87f20 ecx=0007c190 edx=00000000 esi=000a4808 edi=0007c190 eip=77f88303 esp=019fff78 ebp=019fffa8 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:0255d54b=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 019FFFA8 78701C6C 0007C208 019FFFEC 77E687DD 0008AF68 ntdll!NtDelayExecution 019FFFB4 77E687DD 0008AF68 00000000 00000000 0008AF68 rpcrt4!I_RpcServerInqTransportType 019FFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x4f0 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffda000 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=01a3fd24 ebp=01a3fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0259d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01A3FD70 77E6A31D 01A3FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 01A3FFB4 77E687DD 00000005 000A5DE4 7FFDA000 000A5DF0 kernel32!WaitForMultipleObjects 01A3FFEC 00000000 777F21FE 000A5DF0 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01a3fd24 b7 7a e6 77 04 00 00 00 - 48 fd a3 01 01 00 00 00 .z.w....H....... 01a3fd34 00 00 00 00 00 00 00 00 - 01 00 00 00 f0 5d 0a 00 .............].. 01a3fd44 01 00 00 00 54 02 00 00 - 58 02 00 00 68 02 00 00 ....T...X...h... 01a3fd54 0c 03 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fd64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff a3 01 ................ 01a3fd74 1d a3 e6 77 48 fd a3 01 - 01 00 00 00 00 00 00 00 ...wH........... 01a3fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 01a3fd94 b0 fe a3 01 00 00 00 00 - ff ff ff ff f0 5d 0a 00 .............].. 01a3fda4 00 a0 fd 7f e4 5d 0a 00 - 00 00 00 00 00 00 00 00 .....].......... 01a3fdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 01a3fdc4 23 00 00 00 23 00 00 00 - e4 5d 0a 00 00 a0 fd 7f #...#....]...... 01a3fdd4 f0 5d 0a 00 00 a0 fd 7f - 00 a0 fd 7f fe 21 7f 77 .]...........!.w 01a3fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 01a3fdf4 fc ff a3 01 23 00 00 00 - 00 00 00 00 00 00 00 00 ....#........... 01a3fe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe14 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe24 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe34 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe44 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01a3fe54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x4e0 的状态转储 eax=00000000 ebx=000ca2d8 ecx=0010f8d0 edx=00000000 esi=74f693a0 edi=00000000 eip=77f88a57 esp=01abff84 ebp=01abffb4 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: NtRemoveIoCompletion 77f88a4c b8a8000000 mov eax,0xa8 77f88a51 8d542404 lea edx,[esp+0x4] ss:0261d557=???????? 77f88a55 cd2e int 2e 77f88a57 c21400 ret 0x14 77f88a5a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01ABFFB4 77E687DD 74F55F4B 7FFDA000 00000000 000CA2D8 ntdll!NtRemoveIoCompletion 01ABFFEC 00000000 74F54766 000CA2D8 00000000 01AC00F6 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 01abff84 b8 47 f5 74 1c 03 00 00 - bc ff ab 01 b0 ff ab 01 .G.t............ 01abff94 a4 ff ab 01 28 2c f5 74 - 00 a0 fd 7f 00 00 00 00 ....(,.t........ 01abffa4 00 00 00 00 00 00 00 00 - 00 00 f5 74 00 c1 98 02 ...........t.... 01abffb4 ec ff ab 01 dd 87 e6 77 - 4b 5f f5 74 00 a0 fd 7f .......wK_.t.... 01abffc4 00 00 00 00 d8 a2 0c 00 - 00 70 fd 7f 64 f7 9b 01 .........p..d... 01abffd4 c0 ff ab 01 64 f7 9b 01 - ff ff ff ff 56 18 e8 77 ....d.......V..w 01abffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 01abfff4 66 47 f5 74 d8 a2 0c 00 - 00 00 00 00 f6 00 ac 01 fG.t............ 01ac0004 00 00 00 00 06 00 00 00 - 00 00 0a 00 00 00 00 00 ................ 01ac0014 00 00 00 00 06 00 00 00 - 00 00 19 00 00 00 00 00 ................ 01ac0024 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ac0034 00 00 00 01 01 0c 00 00 - 00 00 00 00 00 00 00 00 ................ 01ac0044 00 01 0a 00 00 00 00 00 - 00 00 00 00 01 03 00 00 ................ 01ac0054 01 0a 00 00 00 00 00 00 - 00 00 00 03 00 00 03 00 ................ 01ac0064 00 03 00 00 01 01 02 00 - 04 00 00 00 06 00 00 00 ................ 01ac0074 00 00 01 03 00 00 02 00 - 00 0b 00 00 00 00 00 00 ................ 01ac0084 00 00 00 00 01 03 00 00 - 02 00 01 21 00 00 00 00 ...........!.... 01ac0094 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 01ac00a4 00 00 00 00 00 00 00 00 - 00 00 00 00 01 0a 00 00 ................ 01ac00b4 00 00 00 00 00 00 00 03 - 00 00 04 00 00 00 01 01 ................ 线程 ID 0x3fc 的状态转储 eax=029de000 ebx=01f1ff74 ecx=029df000 edx=00000000 esi=77f88e68 edi=00000340 eip=77f88e73 esp=01f1ff58 ebp=01f1ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02a7d52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 01F1FF7C 77E67837 00000340 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 *----> 原始堆栈转储 <----* 01f1ff58 0f 78 e6 77 40 03 00 00 - 00 00 00 00 74 ff f1 01 .x.w@.......t... 01f1ff68 00 00 00 00 e0 1e ac 01 - 40 7e f8 77 00 44 5f 9a ........@~.w.D_. 01f1ff78 fe ff ff ff 20 7f f8 77 - 37 78 e6 77 40 03 00 00 .... ..w7x.w@... 01f1ff88 c0 27 09 00 00 00 00 00 - 6b f5 b2 75 40 03 00 00 .'......k..u@... 01f1ff98 c0 27 09 00 88 b0 06 00 - e0 1e ac 01 ec ff f1 01 .'.............. 01f1ffa8 e0 1e ac 01 9a f4 b2 75 - 29 dd 59 76 74 f4 b2 75 .......u).Yvt..u 01f1ffb8 dd 87 e6 77 e0 1e ac 01 - 88 b0 06 00 29 dd 59 76 ...w........).Yv 01f1ffc8 e0 1e ac 01 00 60 fd 7f - bf 1b 00 00 c0 ff f1 01 .....`.......... 01f1ffd8 bf 1b 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 01f1ffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 6b f4 b2 75 ............k..u 01f1fff8 e0 1e ac 01 00 00 00 00 - 0d 00 b6 03 02 00 3f 00 ..............?. 01f20008 3f 00 3f 00 3f 00 81 fe - 00 00 00 00 00 00 00 00 ?.?.?........... 01f20018 00 00 03 80 00 00 01 00 - 02 00 03 00 04 00 05 00 ................ 01f20028 06 00 07 00 08 00 09 00 - 0a 00 0b 00 0c 00 0d 00 ................ 01f20038 0e 00 0f 00 10 00 11 00 - 12 00 13 00 14 00 15 00 ................ 01f20048 16 00 17 00 18 00 19 00 - 1a 00 1b 00 1c 00 1d 00 ................ 01f20058 1e 00 1f 00 20 00 21 00 - 22 00 23 00 24 00 25 00 .... .!.".#.$.%. 01f20068 26 00 27 00 28 00 29 00 - 2a 00 2b 00 2c 00 2d 00 &.'.(.).*.+.,.-. 01f20078 2e 00 2f 00 30 00 31 00 - 32 00 33 00 34 00 35 00 ../.0.1.2.3.4.5. 01f20088 36 00 37 00 38 00 39 00 - 3a 00 3b 00 3c 00 3d 00 6.7.8.9.:.;.<.=. 线程 ID 0x3d0 的状态转储 eax=0000188b ebx=0206ff74 ecx=75c859dc edx=00000000 esi=77f88e68 edi=00000378 eip=77f88e73 esp=0206ff58 ebp=0206ff7c iopl=0 nv up ei ng nz ac pe cy cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000293 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:02bcd52b=???????? 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0206FF7C 77E67837 00000378 000927C0 00000000 75B2F56B ntdll!NtWaitForSingleObject 77F87F20 4AFFC033 89257508 FF900C42 037D044A 520004C2 kernel32!WaitForSingleObject 0424548B 00000000 00000000 00000000 00000000 00000000 线程 ID 0x194 的状态转储 eax=77522bda ebx=00000002 ecx=77fb2598 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0232ff24 ebp=0232ff70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:02e8d4f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0232FF70 77E6A31D 0232FF48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0232FFB4 77E687DD 00000000 7FFDEBF8 00000000 00000000 kernel32!WaitForMultipleObjects 0232FFEC 00000000 77522BDA 00000000 00000000 877A0EE8 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0232ff24 b7 7a e6 77 02 00 00 00 - 48 ff 32 02 01 00 00 00 .z.w....H.2..... 0232ff34 00 00 00 00 00 00 00 00 - f8 eb fd 7f 00 00 00 00 ................ 0232ff44 00 00 00 00 e0 03 00 00 - dc 03 00 00 80 d1 1d 81 ................ 0232ff54 20 d0 1d 81 06 b2 af 75 - 00 20 50 c0 b8 9c a1 81 ......u. P..... 0232ff64 b8 9c a1 81 00 00 00 00 - 00 00 00 00 b4 ff 32 02 ..............2. 0232ff74 1d a3 e6 77 48 ff 32 02 - 01 00 00 00 00 00 00 00 ...wH.2......... 0232ff84 00 00 00 00 00 00 00 00 - 1a 2c 52 77 02 00 00 00 .........,Rw.... 0232ff94 a4 ff 32 02 00 00 00 00 - ff ff ff ff 00 00 00 00 ..2............. 0232ffa4 e0 03 00 00 dc 03 00 00 - 00 00 00 00 00 00 00 00 ................ 0232ffb4 ec ff 32 02 dd 87 e6 77 - 00 00 00 00 f8 eb fd 7f ..2....w........ 0232ffc4 00 00 00 00 00 00 00 00 - 00 40 fd 7f 98 25 fb 77 .........@...%.w 0232ffd4 c0 ff 32 02 98 25 fb 77 - ff ff ff ff 56 18 e8 77 ..2..%.w....V..w 0232ffe4 88 ae e6 77 00 00 00 00 - 00 00 00 00 00 00 00 00 ...w............ 0232fff4 da 2b 52 77 00 00 00 00 - 00 00 00 00 e8 0e 7a 87 .+Rw..........z. 02330004 84 ee a4 77 4a 48 a3 9a - 84 72 69 ae 84 c6 d3 f1 ...wJH...ri..... 02330014 12 9a 44 27 49 68 32 fd - a8 84 a6 d0 bb 24 34 95 ..D'Ih2......$4. 02330024 de 2d a1 69 f4 4f 24 34 - 9d de 23 a1 19 34 4f 42 .-.i.O$4..#..4OB 02330034 f9 f4 5e 09 cd a4 f7 49 - 68 16 fd 98 84 3e 4e 3f ..^....Ih....>N? 02330044 21 a1 d9 f4 93 12 9a 43 - e7 48 a8 80 16 48 e8 4f !......C.H...H.O 02330054 e9 fd 12 7a 80 3e 28 a1 - b9 f4 21 f6 a3 9a 79 45 ...z.>(...!...yE 线程 ID 0x338 的状态转储 eax=02989790 ebx=00000001 ecx=02989790 edx=00000000 esi=77f88e58 edi=00000001 eip=77f88e63 esp=02c2fe60 ebp=02c2feac iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0378d433=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02C2FEAC 77DF2A00 02C2FE84 00000001 00000000 02C2FEA4 ntdll!NtWaitForMultipleObjects 02C2FF08 77DF2A77 02C2FED4 00000000 0000EA60 000000FF user32!MsgWaitForMultipleObjectsEx 02C2FF24 76DD9CD1 00000000 00000000 00000000 0000EA60 user32!MsgWaitForMultipleObjects 00090590 00000002 000900E0 00000001 00000338 00000508 browseui!DllGetClassObject *----> 原始堆栈转储 <----* 02c2fe60 b7 7a e6 77 01 00 00 00 - 84 fe c2 02 01 00 00 00 .z.w............ 02c2fe70 00 00 00 00 a4 fe c2 02 - 00 00 00 00 00 00 00 00 ................ 02c2fe80 01 00 00 00 60 04 00 00 - 00 04 00 00 60 ff c2 02 ....`.......`... 02c2fe90 06 04 00 00 88 fe c2 02 - f0 fe c2 02 dc ff c2 02 ................ 02c2fea0 38 27 e4 77 00 ba 3c dc - ff ff ff ff 08 ff c2 02 8'.w..<......... 02c2feb0 00 2a df 77 84 fe c2 02 - 01 00 00 00 00 00 00 00 .*.w............ 02c2fec0 a4 fe c2 02 00 00 00 00 - 00 04 00 00 08 2f c5 77 ............./.w 02c2fed0 06 04 00 00 60 04 00 00 - e0 fe c2 02 30 00 00 00 ....`.......0... 02c2fee0 00 00 03 00 01 00 00 00 - fc 1f 00 10 80 7c df 77 .............|.w 02c2fef0 00 00 00 00 04 04 00 00 - 00 00 00 00 cc 36 fd 7f .............6.. 02c2ff00 00 00 00 00 60 04 00 00 - 24 ff c2 02 77 2a df 77 ....`...$...w*.w 02c2ff10 d4 fe c2 02 00 00 00 00 - 60 ea 00 00 ff 00 00 00 ........`....... 02c2ff20 00 00 00 00 90 05 09 00 - d1 9c dd 76 00 00 00 00 ...........v.... 02c2ff30 00 00 00 00 00 00 00 00 - 60 ea 00 00 ff 00 00 00 ........`....... 02c2ff40 90 05 09 00 00 00 00 00 - ac ff c2 02 20 7f f8 77 ............ ..w 02c2ff50 01 00 00 00 60 ea 00 00 - fe ff ff ff 00 00 00 00 ....`........... 02c2ff60 00 00 00 00 04 04 00 00 - 00 00 00 00 00 00 00 00 ................ 02c2ff70 2d bf f7 13 2d 02 00 00 - ca 01 00 00 96 9b dd 76 -...-..........v 02c2ff80 00 00 00 00 a0 41 c9 77 - 13 90 c5 77 90 05 09 00 .....A.w...w.... 02c2ff90 10 fa 97 01 00 00 c5 77 - 00 00 00 00 0c 00 00 00 .......w........ 线程 ID 0x470 的状态转储 eax=00000008 ebx=00000000 ecx=7ff9f000 edx=00000000 esi=77f88e68 edi=000004ac eip=77f88e73 esp=02e8ff54 ebp=02e8ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForSingleObject 77f88e68 b8ea000000 mov eax,0xea 77f88e6d 8d542404 lea edx,[esp+0x4] ss:039ed527=00000000 77f88e71 cd2e int 2e 77f88e73 c20c00 ret 0xc 77f88e76 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02E8FF78 77E67837 000004AC FFFFFFFF 00000000 75BDA104 ntdll!NtWaitForSingleObject FFFFFFFF 00000000 00000000 00000000 00000000 00000000 kernel32!WaitForSingleObject 线程 ID 0x534 的状态转储 eax=0009cf90 ebx=80020000 ecx=0007e790 edx=00000000 esi=0007e3a0 edi=00000100 eip=77f88a97 esp=0371fe28 ebp=0371ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0427d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0371FF74 78716D9E 786F9AD0 0007E3A0 00BCFA9C 00000022 ntdll!ZwReplyWaitReceivePortEx 0371FFA8 78701C6C 0007C208 0371FFEC 77E687DD 029720F8 rpcrt4!TowerConstruct 0371FFB4 77E687DD 029720F8 00BCFA9C 00000022 029720F8 rpcrt4!I_RpcServerInqTransportType 0371FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x49c 的状态转储 eax=00070110 ebx=00000002 ecx=0000065d edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0375fe5c ebp=0375fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:042bd42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0375FEA8 77DF2A00 0375FE80 00000001 00000000 0375FEA0 ntdll!NtWaitForMultipleObjects 0375FF04 77DF2A77 0375FED0 77C941C0 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0375FF20 77C564FF 00000001 77C941C0 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0375FF74 77C58FFD 0375FFA0 0375FFA4 0375FFA8 0375FF9C shlwapi!Ordinal271 0375FFAC 77C58F85 00000000 77E687DD 00000000 00000000 shlwapi!Ordinal394 0375FFEC 00000000 00000000 00000000 00000000 00000000 shlwapi!Ordinal394 线程 ID 0x390 的状态转储 eax=0379fdf4 ebx=00000474 ecx=00000000 edx=00000000 esi=0379ff98 edi=77df7c12 eip=77df1d6b esp=0379ff58 ebp=0379ff78 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: TranslateMessageEx 77df1d48 0f85cad90200 jne CallMsgFilter+0xeb8 (77e1f718) 77df1d4e 33c0 xor eax,eax 77df1d50 c20800 ret 0x8 77df1d53 ff742408 push dword ptr [esp+0x8] ss:042fd52b=???????? 77df1d57 51 push ecx 77df1d58 e861090000 call GetKeyState+0x92 (77df26be) 77df1d5d c20800 ret 0x8 77df1d60 b89a110000 mov eax,0x119a 77df1d65 8d542404 lea edx,[esp+0x4] ss:042fd52b=???????? 77df1d69 cd2e int 2e 77df1d6b c21000 ret 0x10 77df1d6e 8b442404 mov eax,[esp+0x4] ss:042fd52b=???????? 77df1d72 cd2b int 2b 77df1d74 e939990300 jmp SetClassLongW+0x654 (77e2b6b2) *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0379FF78 77535C36 0379FF98 00000000 00000000 00000000 user32!TranslateMessageEx 0379FFB4 77E687DD 00000474 77555428 00067CEC 00000474 winmm!midiOutGetNumDevs 0379FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x37c 的状态转储 eax=01c13710 ebx=00000000 ecx=000002a3 edx=00000000 esi=029fdc18 edi=00000000 eip=77df2268 esp=03f5ee64 ebp=03f5eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:04abc437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03F5EEA8 76DF217C 006201B0 03F5FFA4 02A282C0 00000000 user32!WaitMessage 03F5EF30 76DF1F65 02A282C0 00070718 00000000 02A282C0 browseui!Ordinal102 03F5FFAC 76C66950 02A282C0 77E687DD 02A282C0 00070718 browseui!Ordinal102 03F5FFEC 00000000 76C66927 02A282C0 00000000 01010101 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 03f5ee64 92 23 df 76 a4 ff f5 03 - c0 82 a2 02 00 00 00 00 .#.v............ 03f5ee74 30 02 4a 00 13 01 00 00 - 2e 16 00 00 00 00 00 00 0.J............. 03f5ee84 5f f0 f7 13 5d 02 00 00 - 39 01 00 00 48 51 07 00 _...]...9...HQ.. 03f5ee94 01 00 00 00 18 dc 9f 02 - 01 44 00 80 30 ae 97 02 .........D..0... 03f5eea4 00 00 00 00 30 ef f5 03 - 7c 21 df 76 b0 01 62 00 ....0...|!.v..b. 03f5eeb4 a4 ff f5 03 c0 82 a2 02 - 00 00 00 00 00 00 00 00 ................ 03f5eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 03f5eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 03f5eee4 f4 ee f5 03 a4 ff f5 03 - 00 00 00 00 00 00 00 00 ................ 03f5eef4 00 00 00 00 00 00 00 00 - 20 ef f5 03 37 78 e6 77 ........ ...7x.w 03f5ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 03f5ef14 7f 1a f9 77 b4 ee f5 03 - 78 dd 06 00 dc ff f5 03 ...w....x....... 03f5ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff f5 03 Rz.vxi.v........ 03f5ef34 65 1f df 76 c0 82 a2 02 - 18 07 07 00 00 00 00 00 e..v............ 03f5ef44 c0 82 a2 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03f5ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03f5ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03f5ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03f5ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 03f5ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x498 的状态转储 eax=76ddd521 ebx=00000000 ecx=00481140 edx=00000000 esi=029830d0 edi=00000000 eip=77df2268 esp=0458ee64 ebp=0458eea8 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: WaitMessage 77df225d b836120000 mov eax,0x1236 77df2262 8d542404 lea edx,[esp+0x4] ss:050ec437=???????? 77df2266 cd2e int 2e 77df2268 c3 ret *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0458EEA8 76DF217C 005801CA 0458FFA4 02A4FCF0 00000000 user32!WaitMessage 0458EF30 76DF1F65 02A4FCF0 00000000 00000000 02A4FCF0 browseui!Ordinal102 0458FFAC 76C66950 02A4FCF0 77E687DD 02A4FCF0 00000000 browseui!Ordinal102 0458FFEC 00000000 00000000 00000000 00000000 00000000 shdocvw!Ordinal131 *----> 原始堆栈转储 <----* 0458ee64 92 23 df 76 a4 ff 58 04 - f0 fc a4 02 00 00 00 00 .#.v..X......... 0458ee74 86 02 4d 00 13 01 00 00 - 2e 16 00 00 00 00 00 00 ..M............. 0458ee84 5f f0 f7 13 5d 02 00 00 - 39 01 00 00 48 51 07 00 _...]...9...HQ.. 0458ee94 01 00 00 00 d0 30 98 02 - 01 44 00 80 a0 cb 9e 02 .....0...D...... 0458eea4 00 00 00 00 30 ef 58 04 - 7c 21 df 76 ca 01 58 00 ....0.X.|!.v..X. 0458eeb4 a4 ff 58 04 f0 fc a4 02 - 00 00 00 00 00 00 00 00 ..X............. 0458eec4 00 00 00 00 4f 76 e6 77 - 00 00 00 00 00 00 00 00 ....Ov.w........ 0458eed4 10 27 00 00 0f 78 e6 77 - 68 00 00 00 00 00 00 00 .'...x.wh....... 0458eee4 f4 ee 58 04 a4 ff 58 04 - 00 00 00 00 00 00 00 00 ..X...X......... 0458eef4 00 00 00 00 00 00 00 00 - 20 ef 58 04 37 78 e6 77 ........ .X.7x.w 0458ef04 38 a0 df 77 00 00 00 00 - 00 00 00 00 00 00 00 00 8..w............ 0458ef14 7f 1a f9 77 b4 ee 58 04 - 78 dd 06 00 dc ff 58 04 ...w..X.x.....X. 0458ef24 52 7a e4 76 78 69 df 76 - 00 00 00 00 ac ff 58 04 Rz.vxi.v......X. 0458ef34 65 1f df 76 f0 fc a4 02 - 00 00 00 00 00 00 00 00 e..v............ 0458ef44 f0 fc a4 02 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0458ef54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0458ef64 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0458ef74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0458ef84 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0458ef94 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 发生应用程序意外错误: 应用程序: (pid=1028) 时间: 2003-9-17 @ 20:49:38.125 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 600 svchost.exe 816 Explorer.exe 796 Rundll32.exe 896 daemon.exe 908 RealPlay.exe 952 internat.exe 268 AcroTray.exe 996 XDICT.exe 912 wuauclt.exe 1028 Acrobat.exe 992 drwtsn32.exe 0 _Total.exe (00400000 - 00919000) (77F80000 - 77FFA000) (08000000 - 0816D000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77D90000 - 77DED000) (786F0000 - 7875E000) (78F90000 - 791D6000) (70BD0000 - 70C34000) (78000000 - 78046000) (71780000 - 7180A000) (77A30000 - 77B1C000) (77530000 - 77560000) (777E0000 - 777E7000) (75950000 - 75956000) (76AF0000 - 76B2D000) (777C0000 - 777DE000) (75010000 - 75020000) (77990000 - 77A2B000) (75280000 - 7529F000) (07000000 - 07027000) (05000000 - 0506F000) (09000000 - 09016000) (06000000 - 06140000) (75E00000 - 75E1A000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (74840000 - 7484B000) (74FD0000 - 74FDA000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (70200000 - 70294000) (77400000 - 77477000) (773F0000 - 77400000) (72C50000 - 72CD5000) (1F9C0000 - 1FA36000) (6AFF0000 - 6AFF6000) (1FA50000 - 1FA60000) (44000000 - 44086000) (76AC0000 - 76AC5000) (77270000 - 772DC000) (71A20000 - 71A28000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (77BF0000 - 77C4E000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (03D90000 - 03DCB000) (1A400000 - 1A478000) (6D990000 - 6DA3B000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (6B020000 - 6B033000) (77800000 - 7780C000) (77300000 - 77313000) (774E0000 - 774E5000) (772E0000 - 772F7000) (77370000 - 7739E000) (77340000 - 77362000) (77320000 - 77339000) (777A0000 - 777A8000) (777B0000 - 777B5000) (75FC0000 - 75FF3000) (781C0000 - 78200000) (77810000 - 7784D000) (77080000 - 770A3000) (76F60000 - 76F6F000) (773A0000 - 773B5000) (04960000 - 04AA8000) 线程 ID 0x2b0 的状态转储 eax=01a735b4 ebx=00000000 ecx=00000000 edx=77b0bd48 esi=0012fc74 edi=0019c8c4 eip=77a9193d esp=0012fc60 ebp=0012fc98 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: UpdateDCOMSettings 77a91926 33db xor ebx,ebx 77a91928 53 push ebx 77a91929 e8d28a0000 call CoResumeClassObjects+0x5 (77a9a400) 77a9192e eb02 jmp UpdateDCOMSettings+0x8ee7 (77a94c32) 77a91930 33db xor ebx,ebx 77a91932 391e cmp [esi],ebx ds:0012fc74=00199d88 77a91934 741d jz CoRegisterSurrogate+0x16 (77a9a453) 77a91936 8b46fc mov eax,[esi+0xfc] ds:00c8d246=???????? 77a91939 3bc3 cmp eax,ebx 77a9193b 740e jz CoRegisterSurrogate+0xe (77a9a44b) 错误 ->77a9193d 8b08 mov ecx,[eax] ds:01a735b4=???????? 77a9193f 50 push eax 77a91940 ff5108 call dword ptr [ecx+0x8] ds:00b5d5d2=???????? 77a91943 8b06 mov eax,[esi] ds:0012fc74=00199d88 77a91945 50 push eax 77a91946 8b08 mov ecx,[eax] ds:01a735b4=???????? 77a91948 ff5110 call dword ptr [ecx+0x10] ds:00b5d5d2=???????? 77a9194b 8b06 mov eax,[esi] ds:0012fc74=00199d88 77a9194d 50 push eax 77a9194e 8b08 mov ecx,[eax] ds:01a735b4=???????? 77a91950 ff5108 call dword ptr [ecx+0x8] ds:00b5d5d2=???????? 77a91953 395ef4 cmp [esi+0xf4],ebx ds:00c8d246=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0012FC98 77A9150D 00000008 0019C8C4 0012FCE0 00000001 ole32!UpdateDCOMSettings 0012FCC4 77A91321 00000008 00000000 0012FD04 77A91376 ole32!UpdateDCOMSettings 0012FCEC 77A8D47D 00000008 00000000 00000080 00000001 ole32!UpdateDCOMSettings 0012FE9C 77A786C2 77A78864 007DB4F0 0012FEDC 77F87F20 ole32!UpdateDCOMSettings 0012FEB4 77A5EA47 00000000 007DB4F0 0014306C 0012FEE0 ole32!DllRegisterServer 77B0B0B0 FFFFFFFF 00000000 00000000 00000000 00000000 ole32!SetErrorInfo 001438D8 77B0B0B0 00143900 001438C0 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 ole32! *----> 原始堆栈转储 <----* 0012fc60 04 08 00 00 05 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0012fc70 b4 35 a7 01 88 9d 19 00 - 30 cb 16 00 01 00 00 00 .5......0....... 0012fc80 c4 c8 19 00 00 00 00 00 - 60 fc 12 00 c4 c8 19 00 ........`....... 0012fc90 01 00 00 00 01 00 00 00 - c4 fc 12 00 0d 15 a9 77 ...............w 0012fca0 08 00 00 00 c4 c8 19 00 - e0 fc 12 00 01 00 00 00 ................ 0012fcb0 20 00 17 00 00 00 00 00 - 00 00 00 00 b0 02 00 00 ............... 0012fcc0 01 00 00 00 ec fc 12 00 - 21 13 a9 77 08 00 00 00 ........!..w.... 0012fcd0 00 00 00 00 04 fd 12 00 - 76 13 a9 77 e0 fc 12 00 ........v..w.... 0012fce0 c4 c8 19 00 08 00 00 00 - 01 00 00 00 9c fe 12 00 ................ 0012fcf0 7d d4 a8 77 08 00 00 00 - 00 00 00 00 80 00 00 00 }..w............ 0012fd00 01 00 00 00 ec ef 16 00 - 1b 01 02 00 04 00 00 00 ................ 0012fd10 00 00 13 00 38 0b 1a 00 - 00 00 00 00 10 fd 12 00 ....8........... 0012fd20 00 00 13 00 38 0b 1a 00 - 00 00 00 00 d4 fd 12 00 ....8........... 0012fd30 cb 96 fc 77 00 00 13 00 - c0 98 fc 77 08 06 13 00 ...w.......w.... 0012fd40 46 98 fc 77 40 0b 1a 00 - 00 00 00 00 00 00 00 00 F..w@........... 0012fd50 20 00 00 00 78 fd 12 00 - 10 8e 72 00 00 00 00 00 ...x.....r..... 0012fd60 0a 02 08 00 84 fd 12 00 - 0a 1d df 77 0a 02 08 00 ...........w.... 0012fd70 82 00 00 00 00 00 00 00 - 00 00 00 00 94 69 a5 77 .............i.w 0012fd80 cd ab ba dc a8 fd 12 00 - 00 00 13 00 40 0a 1a 00 ............@... 0012fd90 00 00 00 00 88 fd 12 00 - 00 00 13 00 40 0a 1a 00 ............@... 线程 ID 0x314 的状态转储 eax=77a94639 ebx=00000102 ecx=0016b7a0 edx=00000000 esi=77f882f8 edi=0158ff74 eip=77f88303 esp=0158ff60 ebp=0158ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:020ed533=5454480b 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0158FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 0158ff60 17 76 e6 77 00 00 00 00 - 74 ff 58 01 b5 77 e6 77 .v.w....t.X..w.w 0158ff70 e8 ee 16 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 ......<.....0u.. 0158ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 0158ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 0158ffa0 e8 ee 16 00 ec ff 58 01 - e8 ee 16 00 53 46 a9 77 ......X.....SF.w 0158ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 e8 ee 16 00 .z.w.z.w...w.... 0158ffc0 d8 7a a4 77 c3 7a a4 77 - e8 ee 16 00 00 c0 fd 7f .z.w.z.w........ 0158ffd0 a0 b7 16 00 c0 ff 58 01 - a0 b7 16 00 ff ff ff ff ......X......... 0158ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 0158fff0 00 00 00 00 39 46 a9 77 - e8 ee 16 00 00 00 00 00 ....9F.w........ 01590000 08 00 00 00 02 01 00 00 - ee ff ee ff 00 00 00 00 ................ 01590010 00 00 27 01 00 70 06 00 - 00 00 59 01 00 02 00 00 ..'..p....Y..... 01590020 40 00 59 01 00 00 79 01 - 5e 01 00 00 18 00 00 00 @.Y...y.^....... 01590030 00 01 07 05 00 00 00 00 - 40 00 59 01 00 00 00 00 ........@.Y..... 01590040 f8 01 08 00 02 10 08 00 - 48 00 14 06 c8 5f 71 01 ........H...._q. 01590050 9c 40 59 01 71 00 00 00 - 00 00 00 00 40 00 00 00 .@Y.q.......@... 01590060 4c 00 59 01 88 38 30 01 - 88 38 30 01 00 00 00 00 L.Y..80..80..... 01590070 df b4 38 01 df b4 38 01 - fa b4 38 01 11 b5 38 01 ..8...8...8...8. 01590080 d0 20 2f 01 5b b4 38 01 - 43 2a 31 01 bc 02 03 00 . /.[.8.C*1..... 01590090 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x494 的状态转储 eax=777f21fe ebx=00000004 ecx=7ffde000 edx=00000000 esi=77f88e58 edi=00000004 eip=77f88e63 esp=0373fd24 ebp=0373fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:0429d2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0373FD70 77E6A31D 0373FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0373FFB4 77E687DD 00000005 0018A24C 7FFDE000 00170F98 kernel32!WaitForMultipleObjects 0373FFEC 00000000 777F21FE 00170F98 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0373fd24 b7 7a e6 77 04 00 00 00 - 48 fd 73 03 01 00 00 00 .z.w....H.s..... 0373fd34 00 00 00 00 00 00 00 00 - 01 00 00 00 98 0f 17 00 ................ 0373fd44 01 00 00 00 38 02 00 00 - c8 01 00 00 58 02 00 00 ....8.......X... 0373fd54 50 03 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 P............... 0373fd64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff 73 03 ..............s. 0373fd74 1d a3 e6 77 48 fd 73 03 - 01 00 00 00 00 00 00 00 ...wH.s......... 0373fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 04 00 00 00 .........".w.... 0373fd94 b0 fe 73 03 00 00 00 00 - ff ff ff ff 98 0f 17 00 ..s............. 0373fda4 00 e0 fd 7f 4c a2 18 00 - 00 00 00 00 00 00 00 00 ....L........... 0373fdb4 00 00 00 00 00 00 00 00 - 01 00 00 00 38 00 00 00 ............8... 0373fdc4 23 00 00 00 23 00 00 00 - 4c a2 18 00 00 e0 fd 7f #...#...L....... 0373fdd4 98 0f 17 00 00 e0 fd 7f - 00 e0 fd 7f fe 21 7f 77 .............!.w 0373fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 0373fdf4 fc ff 73 03 23 00 00 00 - 00 00 00 00 00 00 00 00 ..s.#........... 0373fe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0373fe14 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0373fe24 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0373fe34 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0373fe44 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0373fe54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x2f4 的状态转储 eax=00000000 ebx=77f87f20 ecx=00010101 edx=00000000 esi=001b50b0 edi=0016a728 eip=77f88303 esp=041dff78 ebp=041dffa8 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:04d3d54b=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 041DFFA8 78701C6C 0016A7A0 041DFFEC 77E687DD 0019B898 ntdll!NtDelayExecution 041DFFB4 77E687DD 0019B898 00000000 00000000 0019B898 rpcrt4!I_RpcServerInqTransportType 041DFFEC 00000000 78701C54 0019B898 00000000 00000380 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 041dff78 74 9a 6f 78 01 00 00 00 - 90 ff 1d 04 00 00 00 00 t.ox............ 041dff88 00 00 00 00 98 b8 19 00 - 00 5d 1e ee ff ff ff ff .........]...... 041dff98 00 5d 1e ee ff ff ff ff - 30 75 00 00 98 b8 19 00 .]......0u...... 041dffa8 b4 ff 1d 04 6c 1c 70 78 - a0 a7 16 00 ec ff 1d 04 ....l.px........ 041dffb8 dd 87 e6 77 98 b8 19 00 - 00 00 00 00 00 00 00 00 ...w............ 041dffc8 98 b8 19 00 00 80 fd 7f - 00 00 00 00 c0 ff 1d 04 ................ 041dffd8 00 00 00 00 ff ff ff ff - 56 18 e8 77 88 ae e6 77 ........V..w...w 041dffe8 00 00 00 00 00 00 00 00 - 00 00 00 00 54 1c 70 78 ............T.px 041dfff8 98 b8 19 00 00 00 00 00 - 80 03 00 00 00 10 00 00 ................ 041e0008 09 00 00 00 0c 00 00 00 - 00 00 00 00 f1 01 00 00 ................ 041e0018 66 00 00 00 19 00 00 00 - 03 00 00 00 00 00 00 00 f............... 041e0028 30 0e 1e 04 30 00 1e 04 - 00 00 00 00 00 00 00 00 0...0........... 041e0038 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041e0048 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041e0058 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041e0068 00 00 00 00 00 00 00 00 - 10 94 76 03 00 00 00 00 ..........v..... 041e0078 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041e0088 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041e0098 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 041e00a8 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x420 的状态转储 eax=00000000 ebx=80020000 ecx=00000000 edx=00000000 esi=0016c8d8 edi=00000100 eip=77f88a97 esp=04d9fe28 ebp=04d9ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:058fd3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04D9FF74 78716D9E 786F9AD0 0016C8D8 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 04D9FFA8 78701C6C 0016A7A0 04D9FFEC 77E687DD 001939C8 rpcrt4!TowerConstruct 04D9FFB4 77E687DD 001939C8 00000000 00000000 001939C8 rpcrt4!I_RpcServerInqTransportType 04D9FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x408 的状态转储 eax=001afa01 ebx=00000002 ecx=0495ffdc edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=0495fe5c ebp=0495fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:054bd42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0495FEA8 77DF2A00 0495FE80 00000001 00000000 0495FEA0 ntdll!NtWaitForMultipleObjects 0495FF04 77DF2A77 0495FED0 70C2AB38 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 0495FF20 70C19AFA 00000001 70C2AB38 00000000 0000EA60 user32!MsgWaitForMultipleObjects 0495FF74 70C19E82 0495FFA0 0495FFA4 0495FFA8 0495FF9C !Ordinal265 0495FFAC 70C1A046 00000000 77E687DD 00000000 00000000 !Ordinal293 0495FFEC 00000000 70C1A016 00000000 00000000 00905A4D !Ordinal293 *----> 原始堆栈转储 <----* 0495fe5c b7 7a e6 77 02 00 00 00 - 80 fe 95 04 01 00 00 00 .z.w............ 0495fe6c 00 00 00 00 a0 fe 95 04 - 00 00 00 00 00 00 00 00 ................ 0495fe7c 02 00 00 00 d4 03 00 00 - ec 03 00 00 cc fe 95 04 ................ 0495fe8c 78 c5 f8 77 00 00 00 00 - cc fe 95 04 dc c5 f8 77 x..w...........w 0495fe9c c8 29 13 00 00 ba 3c dc - ff ff ff ff 04 ff 95 04 .)....<......... 0495feac 00 2a df 77 80 fe 95 04 - 01 00 00 00 00 00 00 00 .*.w............ 0495febc a0 fe 95 04 00 00 00 00 - 60 ea 00 00 18 ab c2 70 ........`......p 0495fecc 00 00 00 00 d4 03 00 00 - ec 03 00 00 c4 d5 f8 77 ...............w 0495fedc 00 00 00 00 18 ab c2 70 - 00 00 16 71 00 00 00 00 .......p...q.... 0495feec 00 b0 fd 7f 90 4f a3 77 - 00 00 00 00 cc b6 fd 7f .....O.w........ 0495fefc 00 00 00 00 ec 03 00 00 - 20 ff 95 04 77 2a df 77 ........ ...w*.w 0495ff0c d0 fe 95 04 38 ab c2 70 - 60 ea 00 00 41 00 00 00 ....8..p`...A... 0495ff1c 00 00 00 00 74 ff 95 04 - fa 9a c1 70 01 00 00 00 ....t......p.... 0495ff2c 38 ab c2 70 00 00 00 00 - 60 ea 00 00 41 00 00 00 8..p....`...A... 0495ff3c 20 ab c2 70 18 ab c2 70 - 00 00 00 00 48 ff 95 04 ..p...p....H... 0495ff4c 48 ff 95 04 30 1f 13 00 - b0 b0 b0 77 00 f0 fd 7f H...0......w.... 0495ff5c dc fe 95 04 01 00 00 00 - f6 8a 1f 01 18 ab c2 70 ...............p 0495ff6c 60 ea 00 00 01 00 00 00 - ac ff 95 04 82 9e c1 70 `..............p 0495ff7c a0 ff 95 04 a4 ff 95 04 - a8 ff 95 04 9c ff 95 04 ................ 0495ff8c 60 ea 00 00 00 00 00 00 - 00 00 bd 70 00 00 00 00 `..........p.... 线程 ID 0x310 的状态转储 eax=0517fcd0 ebx=80020000 ecx=00172858 edx=00000000 esi=0016c8d8 edi=0019cad0 eip=77f88a97 esp=0517fe28 ebp=0517ff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:05cdd3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0517FF74 78716D9E 786F9AD0 0016C8D8 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 0517FFA8 78701C6C 0016A7A0 0517FFEC 77E687DD 00194670 rpcrt4!TowerConstruct 0517FFB4 77E687DD 00194670 00000000 00000000 00194670 rpcrt4!I_RpcServerInqTransportType 0517FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 发生应用程序意外错误: 应用程序: (pid=596) 时间: 2003-9-17 @ 20:55:07.312 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 416 svchost.exe 452 spoolsv.exe 484 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 600 svchost.exe 816 Explorer.exe 796 Rundll32.exe 896 daemon.exe 908 RealPlay.exe 952 internat.exe 268 AcroTray.exe 996 XDICT.exe 912 wuauclt.exe 932 cmd.exe 756 conime.exe 596 Acrobat.exe 1188 drwtsn32.exe 0 _Total.exe (00400000 - 00919000) (77F80000 - 77FFA000) (08000000 - 0816D000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77D90000 - 77DED000) (786F0000 - 7875E000) (78F90000 - 791D6000) (70BD0000 - 70C34000) (78000000 - 78046000) (71780000 - 7180A000) (77A30000 - 77B1C000) (77530000 - 77560000) (777E0000 - 777E7000) (75950000 - 75956000) (76AF0000 - 76B2D000) (777C0000 - 777DE000) (75010000 - 75020000) (77990000 - 77A2B000) (75280000 - 7529F000) (07000000 - 07027000) (05000000 - 0506F000) (09000000 - 09016000) (06000000 - 06140000) (75E00000 - 75E1A000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (74840000 - 7484B000) (74FD0000 - 74FDA000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (70200000 - 70294000) (77400000 - 77477000) (773F0000 - 77400000) (72C50000 - 72CD5000) (1F9C0000 - 1FA36000) (6AFF0000 - 6AFF6000) (1FA50000 - 1FA60000) (44000000 - 44086000) (76AC0000 - 76AC5000) (77270000 - 772DC000) (71A20000 - 71A28000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (77BF0000 - 77C4E000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (03870000 - 038AB000) (1A400000 - 1A478000) (6D990000 - 6DA3B000) (76F60000 - 76F6F000) (773A0000 - 773B5000) (6B020000 - 6B033000) (75FC0000 - 75FF3000) (781C0000 - 78200000) 线程 ID 0x448 的状态转储 eax=01a735e4 ebx=00000000 ecx=00000000 edx=77b0bd48 esi=0012fc74 edi=001949d4 eip=77a9193d esp=0012fc60 ebp=0012fc98 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: UpdateDCOMSettings 77a91926 33db xor ebx,ebx 77a91928 53 push ebx 77a91929 e8d28a0000 call CoResumeClassObjects+0x5 (77a9a400) 77a9192e eb02 jmp UpdateDCOMSettings+0x8ee7 (77a94c32) 77a91930 33db xor ebx,ebx 77a91932 391e cmp [esi],ebx ds:0012fc74=00197f90 77a91934 741d jz CoRegisterSurrogate+0x16 (77a9a453) 77a91936 8b46fc mov eax,[esi+0xfc] ds:00c8d246=???????? 77a91939 3bc3 cmp eax,ebx 77a9193b 740e jz CoRegisterSurrogate+0xe (77a9a44b) 错误 ->77a9193d 8b08 mov ecx,[eax] ds:01a735e4=???????? 77a9193f 50 push eax 77a91940 ff5108 call dword ptr [ecx+0x8] ds:00b5d5d2=???????? 77a91943 8b06 mov eax,[esi] ds:0012fc74=00197f90 77a91945 50 push eax 77a91946 8b08 mov ecx,[eax] ds:01a735e4=???????? 77a91948 ff5110 call dword ptr [ecx+0x10] ds:00b5d5d2=???????? 77a9194b 8b06 mov eax,[esi] ds:0012fc74=00197f90 77a9194d 50 push eax 77a9194e 8b08 mov ecx,[eax] ds:01a735e4=???????? 77a91950 ff5108 call dword ptr [ecx+0x8] ds:00b5d5d2=???????? 77a91953 395ef4 cmp [esi+0xf4],ebx ds:00c8d246=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0012FC98 77A9150D 00000008 001949D4 0012FCE0 00000001 ole32!UpdateDCOMSettings 0012FCC4 77A91321 00000008 00000000 0012FD04 77A91376 ole32!UpdateDCOMSettings 0012FCEC 77A8D47D 00000008 00000000 00000080 00000001 ole32!UpdateDCOMSettings 0012FE9C 77A786C2 77A78864 007DB4F0 0012FEDC 77F87F20 ole32!UpdateDCOMSettings 0012FEB4 77A5EA47 00000000 007DB4F0 001430BC 0012FEE0 ole32!DllRegisterServer 77B0B0B0 FFFFFFFF 00000000 00000000 00000000 00000000 ole32!SetErrorInfo 00143928 77B0B0B0 00143950 00143910 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 ole32! *----> 原始堆栈转储 <----* 0012fc60 04 08 00 00 05 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0012fc70 e4 35 a7 01 90 7f 19 00 - 70 cb 16 00 01 00 00 00 .5......p....... 0012fc80 d4 49 19 00 00 00 00 00 - 60 fc 12 00 d4 49 19 00 .I......`....I.. 0012fc90 01 00 00 00 01 00 00 00 - c4 fc 12 00 0d 15 a9 77 ...............w 0012fca0 08 00 00 00 d4 49 19 00 - e0 fc 12 00 01 00 00 00 .....I.......... 0012fcb0 60 00 17 00 00 00 00 00 - 00 00 00 00 48 04 00 00 `...........H... 0012fcc0 01 00 00 00 ec fc 12 00 - 21 13 a9 77 08 00 00 00 ........!..w.... 0012fcd0 00 00 00 00 04 fd 12 00 - 76 13 a9 77 e0 fc 12 00 ........v..w.... 0012fce0 d4 49 19 00 08 00 00 00 - 01 00 00 00 9c fe 12 00 .I.............. 0012fcf0 7d d4 a8 77 08 00 00 00 - 00 00 00 00 80 00 00 00 }..w............ 0012fd00 01 00 00 00 2c f0 16 00 - 00 00 00 00 16 26 fb 77 ....,........&.w 0012fd10 00 00 13 00 b8 09 1a 00 - 00 00 00 00 10 fd 12 00 ................ 0012fd20 88 06 13 00 c4 fd 12 00 - f4 64 fb 77 00 31 f8 77 .........d.w.1.w 0012fd30 ff ff ff ff d4 fd 12 00 - 82 96 fc 77 78 07 13 00 ...........wx... 0012fd40 c0 09 1a 00 c0 09 1a 00 - 00 00 00 00 00 00 00 00 ................ 0012fd50 38 c7 b0 77 08 da 17 00 - a0 dc fc 77 00 00 00 00 8..w.......w.... 0012fd60 c8 01 03 00 84 fd 12 00 - 0a 1d df 77 c8 01 03 00 ...........w.... 0012fd70 82 00 00 00 00 00 00 00 - 00 00 00 00 94 69 a5 77 .............i.w 0012fd80 cd ab ba dc a8 fd 12 00 - 00 00 13 00 c0 08 1a 00 ................ 0012fd90 00 00 00 00 88 fd 12 00 - 00 00 13 00 c0 08 1a 00 ................ 线程 ID 0x494 的状态转储 eax=00000010 ebx=77f87f20 ecx=001977c0 edx=00000000 esi=0016c8f0 edi=0016a628 eip=77f88303 esp=0148ff78 ebp=0148ffa8 iopl=0 nv up ei ng nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000286 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:01fed54b=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0148FFA8 78701C6C 0016A6A0 0148FFEC 77E687DD 0016B248 ntdll!NtDelayExecution 0148FFB4 77E687DD 0016B248 4016C494 00000070 0016B248 rpcrt4!I_RpcServerInqTransportType 0148FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x408 的状态转储 eax=77a94639 ebx=00000102 ecx=0016b7e0 edx=00000000 esi=77f882f8 edi=0158ff74 eip=77f88303 esp=0158ff60 ebp=0158ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:020ed533=5454480b 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0158FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep *----> 原始堆栈转储 <----* 0158ff60 17 76 e6 77 00 00 00 00 - 74 ff 58 01 b5 77 e6 77 .v.w....t.X..w.w 0158ff70 28 ef 16 00 00 ba 3c dc - ff ff ff ff 30 75 00 00 (.....<.....0u.. 0158ff80 eb 75 e6 77 60 ea 00 00 - 00 00 00 00 fc 85 a9 77 .u.w`..........w 0158ff90 60 ea 00 00 fb 46 a9 77 - 00 00 00 00 00 00 a3 77 `....F.w.......w 0158ffa0 28 ef 16 00 ec ff 58 01 - 28 ef 16 00 53 46 a9 77 (.....X.(...SF.w 0158ffb0 d8 7a a4 77 c3 7a a4 77 - dd 87 e6 77 28 ef 16 00 .z.w.z.w...w(... 0158ffc0 d8 7a a4 77 c3 7a a4 77 - 28 ef 16 00 00 c0 fd 7f .z.w.z.w(....... 0158ffd0 e0 b7 16 00 c0 ff 58 01 - e0 b7 16 00 ff ff ff ff ......X......... 0158ffe0 56 18 e8 77 88 ae e6 77 - 00 00 00 00 00 00 00 00 V..w...w........ 0158fff0 00 00 00 00 39 46 a9 77 - 28 ef 16 00 00 00 00 00 ....9F.w(....... 01590000 08 00 00 00 02 01 00 00 - ee ff ee ff 00 00 00 00 ................ 01590010 00 00 27 01 00 d0 06 00 - 00 00 59 01 00 02 00 00 ..'.......Y..... 01590020 40 00 59 01 00 00 79 01 - 65 01 00 00 19 00 00 00 @.Y...y.e....... 01590030 c0 02 39 00 00 00 00 00 - c0 4f 6a 01 00 00 00 00 ..9......Oj..... 01590040 f8 01 08 00 02 10 08 00 - 48 30 1f 03 08 c0 21 03 ........H0....!. 01590050 9c 40 59 01 71 00 00 00 - 00 00 00 00 40 00 00 00 .@Y.q.......@... 01590060 4c 00 59 01 88 38 30 01 - 88 38 30 01 00 00 00 00 L.Y..80..80..... 01590070 df b4 38 01 df b4 38 01 - fa b4 38 01 11 b5 38 01 ..8...8...8...8. 01590080 d0 20 2f 01 5b b4 38 01 - 43 2a 31 01 bc 02 03 00 . /.[.8.C*1..... 01590090 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x3fc 的状态转储 eax=777f21fe ebx=00000003 ecx=7ffde000 edx=00000000 esi=77f88e58 edi=00000003 eip=77f88e63 esp=0374fd24 ebp=0374fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:042ad2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0374FD70 77E6A31D 0374FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0374FFB4 77E687DD 00000004 001897F4 7FFDE000 00170FD8 kernel32!WaitForMultipleObjects 0374FFEC 00000000 777F21FE 00170FD8 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0374fd24 b7 7a e6 77 03 00 00 00 - 48 fd 74 03 01 00 00 00 .z.w....H.t..... 0374fd34 00 00 00 00 00 00 00 00 - 00 00 00 00 d8 0f 17 00 ................ 0374fd44 01 00 00 00 38 02 00 00 - 44 02 00 00 58 02 00 00 ....8...D...X... 0374fd54 ff 4d 00 00 eb 58 00 00 - d9 63 00 00 c9 6a 00 00 .M...X...c...j.. 0374fd64 bf 70 00 00 b7 73 00 00 - b0 74 00 00 b4 ff 74 03 .p...s...t....t. 0374fd74 1d a3 e6 77 48 fd 74 03 - 01 00 00 00 00 00 00 00 ...wH.t......... 0374fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 03 00 00 00 .........".w.... 0374fd94 b0 fe 74 03 00 00 00 00 - ff ff ff ff d8 0f 17 00 ..t............. 0374fda4 00 e0 fd 7f f4 97 18 00 - 6c 67 ac 30 6a 67 be 31 ........lg.0jg.1 0374fdb4 69 67 dc 30 00 00 00 00 - 00 00 00 00 38 00 00 00 ig.0........8... 0374fdc4 23 00 00 00 23 00 00 00 - f4 97 18 00 00 e0 fd 7f #...#........... 0374fdd4 d8 0f 17 00 00 e0 fd 7f - 00 e0 fd 7f fe 21 7f 77 .............!.w 0374fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 0374fdf4 fc ff 74 03 23 00 00 00 - 98 7b 25 01 93 7b 34 03 ..t.#....{%..{4. 0374fe04 8e 7a 40 07 89 78 4a 0d - 84 76 53 12 80 75 5b 17 .z@..xJ..vS..u[. 0374fe14 7c 73 62 1b 78 72 6a 1f - 75 71 72 22 72 6f 7b 26 |sb.xrj.uqr"ro{& 0374fe24 6f 6e 85 29 6c 6d 90 2c - 69 6c 9c 2e 66 6c aa 30 on.)lm.,il..fl.0 0374fe34 64 6c bc 31 63 6c d9 30 - 63 6c f4 2f 63 6c ff 2d dl.1cl.0cl./cl.- 0374fe44 64 6c ff 2b 64 6b ff 29 - 65 6a ff 28 65 6a ff 28 dl.+dk.)ej.(ej.( 0374fe54 65 6a ff 28 65 6a ff 28 - fd 53 00 00 e3 5f 00 00 ej.(ej.(.S..._.. 线程 ID 0x474 的状态转储 eax=00000001 ebx=00000000 ecx=7ffdb000 edx=00000000 esi=0016c918 edi=00000100 eip=77f88a97 esp=03d2fe28 ebp=03d2ff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0488d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03D2FF74 78716D9E 786F9AD0 0016C918 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 03D2FFA8 78701C6C 0016A6A0 03D2FFEC 77E687DD 00193CF0 rpcrt4!TowerConstruct 03D2FFB4 77E687DD 00193CF0 00000000 00000000 00193CF0 rpcrt4!I_RpcServerInqTransportType 03D2FFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x2ec 的状态转储 eax=78701c54 ebx=00000000 ecx=00000000 edx=00000000 esi=0016c918 edi=00000100 eip=77f88a97 esp=02cdfe28 ebp=02cdff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:0383d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02CDFF74 78716D9E 786F9A00 0016C918 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 02CDFFA8 78701C6C 00197BF0 02CDFFEC 77E687DD 001930F0 rpcrt4!TowerConstruct 02CDFFB4 77E687DD 001930F0 00000000 00000000 001930F0 rpcrt4!I_RpcServerInqTransportType 02CDFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 发生应用程序意外错误: 应用程序: (pid=792) 时间: 2003-11-5 @ 19:43:39.062 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 156 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 412 svchost.exe 448 spoolsv.exe 480 svchost.exe 520 regsvc.exe 536 MSTask.exe 580 WinMgmt.exe 600 svchost.exe 1200 Explorer.exe 1196 Rundll32.exe 544 internat.exe 1232 AcroTray.exe 1212 XDICT.exe 280 wuauclt.exe 744 cthighway.exe 792 Acrobat.exe 992 drwtsn32.exe 0 _Total.exe (00400000 - 00919000) (77F80000 - 77FFA000) (08000000 - 0816D000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77D90000 - 77DED000) (786F0000 - 7875E000) (78F90000 - 791D6000) (70BD0000 - 70C34000) (78000000 - 78046000) (71780000 - 7180A000) (77A30000 - 77B1C000) (77530000 - 77560000) (777E0000 - 777E7000) (75950000 - 75956000) (76AF0000 - 76B2D000) (777C0000 - 777DE000) (75010000 - 75020000) (77990000 - 77A2B000) (75280000 - 7529F000) (07000000 - 07027000) (05000000 - 0506F000) (09000000 - 09016000) (06000000 - 06140000) (75E00000 - 75E1A000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (74840000 - 7484B000) (74FD0000 - 74FDA000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (70200000 - 70294000) (77400000 - 77477000) (773F0000 - 77400000) (72C50000 - 72CD5000) (1F9C0000 - 1FA36000) (6AFF0000 - 6AFF6000) (1FA50000 - 1FA60000) (44000000 - 44086000) (76AC0000 - 76AC5000) (77270000 - 772DC000) (71A20000 - 71A28000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (77BF0000 - 77C4E000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (77810000 - 7784D000) (77080000 - 770A3000) (76F60000 - 76F6F000) (773A0000 - 773B5000) (02D20000 - 02D5B000) (1A400000 - 1A478000) (6D990000 - 6DA3B000) (6B020000 - 6B033000) (74F50000 - 74F6D000) (74F90000 - 74F97000) (75FC0000 - 75FF3000) (781C0000 - 78200000) (05070000 - 051B8000) 线程 ID 0x520 的状态转储 eax=01a73614 ebx=00000000 ecx=00000000 edx=77b0bd48 esi=0012fc74 edi=0019ba9c eip=77a9193d esp=0012fc60 ebp=0012fc98 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206 函数: UpdateDCOMSettings 77a91926 33db xor ebx,ebx 77a91928 53 push ebx 77a91929 e8d28a0000 call CoResumeClassObjects+0x5 (77a9a400) 77a9192e eb02 jmp UpdateDCOMSettings+0x8ee7 (77a94c32) 77a91930 33db xor ebx,ebx 77a91932 391e cmp [esi],ebx ds:0012fc74=0019a068 77a91934 741d jz CoRegisterSurrogate+0x16 (77a9a453) 77a91936 8b46fc mov eax,[esi+0xfc] ds:00c8d246=???????? 77a91939 3bc3 cmp eax,ebx 77a9193b 740e jz CoRegisterSurrogate+0xe (77a9a44b) 错误 ->77a9193d 8b08 mov ecx,[eax] ds:01a73614=???????? 77a9193f 50 push eax 77a91940 ff5108 call dword ptr [ecx+0x8] ds:00b5d5d2=???????? 77a91943 8b06 mov eax,[esi] ds:0012fc74=0019a068 77a91945 50 push eax 77a91946 8b08 mov ecx,[eax] ds:01a73614=???????? 77a91948 ff5110 call dword ptr [ecx+0x10] ds:00b5d5d2=???????? 77a9194b 8b06 mov eax,[esi] ds:0012fc74=0019a068 77a9194d 50 push eax 77a9194e 8b08 mov ecx,[eax] ds:01a73614=???????? 77a91950 ff5108 call dword ptr [ecx+0x8] ds:00b5d5d2=???????? 77a91953 395ef4 cmp [esi+0xf4],ebx ds:00c8d246=???????? *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0012FC98 77A9150D 00000008 0019BA9C 0012FCE0 00000001 ole32!UpdateDCOMSettings 0012FCC4 77A91321 00000008 00000000 0012FD04 77A91376 ole32!UpdateDCOMSettings 0012FCEC 77A8D47D 00000008 00000000 00000080 00000001 ole32!UpdateDCOMSettings 0012FE9C 77A786C2 77A78864 007DB4F0 0012FEDC 77F87F20 ole32!UpdateDCOMSettings 0012FEB4 77A5EA47 00000000 007DB4F0 001430EC 0012FEE0 ole32!DllRegisterServer 77B0B0B0 FFFFFFFF 00000000 00000000 00000000 00000000 ole32!SetErrorInfo 00143958 77B0B0B0 00143980 00143940 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 ole32! *----> 原始堆栈转储 <----* 0012fc60 04 08 00 00 05 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0012fc70 14 36 a7 01 68 a0 19 00 - b8 cb 16 00 01 00 00 00 .6..h........... 0012fc80 9c ba 19 00 00 00 00 00 - 60 fc 12 00 9c ba 19 00 ........`....... 0012fc90 01 00 00 00 01 00 00 00 - c4 fc 12 00 0d 15 a9 77 ...............w 0012fca0 08 00 00 00 9c ba 19 00 - e0 fc 12 00 01 00 00 00 ................ 0012fcb0 54 ff 16 00 00 00 00 00 - 00 00 00 00 20 05 00 00 T........... ... 0012fcc0 01 00 00 00 ec fc 12 00 - 21 13 a9 77 08 00 00 00 ........!..w.... 0012fcd0 00 00 00 00 04 fd 12 00 - 76 13 a9 77 e0 fc 12 00 ........v..w.... 0012fce0 9c ba 19 00 08 00 00 00 - 01 00 00 00 9c fe 12 00 ................ 0012fcf0 7d d4 a8 77 08 00 00 00 - 00 00 00 00 80 00 00 00 }..w............ 0012fd00 01 00 00 00 14 f2 16 00 - d3 00 08 00 04 00 00 00 ................ 0012fd10 00 00 13 00 70 22 18 00 - 00 00 00 00 10 fd 12 00 ....p".......... 0012fd20 00 00 13 00 70 22 18 00 - 00 00 00 00 d4 fd 12 00 ....p".......... 0012fd30 cb 96 fc 77 00 00 13 00 - c0 98 fc 77 08 06 13 00 ...w.......w.... 0012fd40 46 98 fc 77 78 22 18 00 - 00 00 00 00 00 00 00 00 F..wx".......... 0012fd50 20 00 00 00 78 fd 12 00 - 10 8e 72 00 00 00 00 00 ...x.....r..... 0012fd60 36 01 fa 01 84 fd 12 00 - 0a 1d df 77 36 01 fa 01 6..........w6... 0012fd70 82 00 00 00 00 00 00 00 - 00 00 00 00 ac fd 12 00 ................ 0012fd80 00 00 00 00 16 26 fb 77 - 00 00 13 00 78 21 18 00 .....&.w....x!.. 0012fd90 00 00 00 00 88 fd 12 00 - 88 06 13 00 3c fe 12 00 ............<... 线程 ID 0x428 的状态转储 eax=777f21fe ebx=00000003 ecx=7ffde000 edx=00000000 esi=77f88e58 edi=00000003 eip=77f88e63 esp=0374fd24 ebp=0374fd70 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:042ad2f7=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0374FD70 77E6A31D 0374FD48 00000001 00000000 00000000 ntdll!NtWaitForMultipleObjects 0374FFB4 77E687DD 00000004 0018906C 7FFDE000 00170E90 kernel32!WaitForMultipleObjects 0374FFEC 00000000 777F21FE 00170E90 00000000 00000001 kernel32!GetModuleFileNameA *----> 原始堆栈转储 <----* 0374fd24 b7 7a e6 77 03 00 00 00 - 48 fd 74 03 01 00 00 00 .z.w....H.t..... 0374fd34 00 00 00 00 00 00 00 00 - 00 00 00 00 90 0e 17 00 ................ 0374fd44 01 00 00 00 38 02 00 00 - 3c 02 00 00 58 02 00 00 ....8...<...X... 0374fd54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0374fd64 00 00 00 00 00 00 00 00 - 00 00 00 00 b4 ff 74 03 ..............t. 0374fd74 1d a3 e6 77 48 fd 74 03 - 01 00 00 00 00 00 00 00 ...wH.t......... 0374fd84 00 00 00 00 00 00 00 00 - b2 22 7f 77 03 00 00 00 .........".w.... 0374fd94 b0 fe 74 03 00 00 00 00 - ff ff ff ff 90 0e 17 00 ..t............. 0374fda4 00 e0 fd 7f 6c 90 18 00 - 00 00 00 00 00 00 00 00 ....l........... 0374fdb4 00 00 00 00 00 00 00 00 - 00 00 00 00 38 00 00 00 ............8... 0374fdc4 23 00 00 00 23 00 00 00 - 6c 90 18 00 00 e0 fd 7f #...#...l....... 0374fdd4 90 0e 17 00 00 e0 fd 7f - 00 e0 fd 7f fe 21 7f 77 .............!.w 0374fde4 00 00 00 00 85 87 e6 77 - 1b 00 00 00 00 02 00 00 .......w........ 0374fdf4 fc ff 74 03 23 00 00 00 - 00 00 00 00 00 00 00 00 ..t.#........... 0374fe04 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0374fe14 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0374fe24 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0374fe34 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0374fe44 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 0374fe54 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ 线程 ID 0x3d0 的状态转储 eax=00197090 ebx=00000000 ecx=0016c9cc edx=00000000 esi=0016c958 edi=00000100 eip=77f88a97 esp=02fbfe28 ebp=02fbff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:03b1d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 02FBFF74 78716D9E 786F9AD0 0016C958 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 02FBFFA8 78701C6C 0016A6D8 02FBFFEC 77E687DD 00194FB8 rpcrt4!TowerConstruct 02FBFFB4 77E687DD 00194FB8 00000000 00000000 00194FB8 rpcrt4!I_RpcServerInqTransportType 02FBFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x88 的状态转储 eax=00194ed0 ebx=00000000 ecx=0016a3b0 edx=00000000 esi=0016c958 edi=00000100 eip=77f88a97 esp=03fffe28 ebp=03ffff74 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:04b5d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 03FFFF74 78716D9E 786F9AD0 0016C958 00000000 00000000 ntdll!ZwReplyWaitReceivePortEx 03FFFFA8 78701C6C 0016A6D8 03FFFFEC 77E687DD 00194ED0 rpcrt4!TowerConstruct 03FFFFB4 77E687DD 00194ED0 00000000 00000000 00194ED0 rpcrt4!I_RpcServerInqTransportType 03FFFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x2f4 的状态转储 eax=00130000 ebx=00000102 ecx=00195ad8 edx=00000000 esi=77f882f8 edi=0148ff74 eip=77f88303 esp=0148ff60 ebp=0148ff7c iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: NtDelayExecution 77f882f8 b832000000 mov eax,0x32 77f882fd 8d542404 lea edx,[esp+0x4] ss:01fed533=???????? 77f88301 cd2e int 2e 77f88303 c20800 ret 0x8 77f88306 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 0148FF7C 77E675EB 0000EA60 00000000 77A985FC 0000EA60 ntdll!NtDelayExecution 00007530 00000000 00000000 00000000 00000000 00000000 kernel32!Sleep 线程 ID 0x494 的状态转储 eax=0019bbb0 ebx=00000000 ecx=7ffdc000 edx=00000000 esi=0016c958 edi=00000100 eip=77f88a97 esp=041dfe28 ebp=041dff74 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000206 函数: ZwReplyWaitReceivePortEx 77f88a8c b8ac000000 mov eax,0xac 77f88a91 8d542404 lea edx,[esp+0x4] ss:04d3d3fb=???????? 77f88a95 cd2e int 2e 77f88a97 c21400 ret 0x14 77f88a9a 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 041DFF74 78716D9E 786F9A00 0016C958 00000000 03FFFA74 ntdll!ZwReplyWaitReceivePortEx 041DFFA8 78701C6C 001964C8 041DFFEC 77E687DD 00195020 rpcrt4!TowerConstruct 041DFFB4 77E687DD 00195020 00000000 03FFFA74 00195020 rpcrt4!I_RpcServerInqTransportType 041DFFEC 00000000 00000000 00000000 00000000 00000000 kernel32!GetModuleFileNameA 线程 ID 0x2a0 的状态转储 eax=001a8a01 ebx=00000002 ecx=04b4ffdc edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=04b4fe5c ebp=04b4fea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:056ad42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 04B4FEA8 77DF2A00 04B4FE80 00000001 00000000 04B4FEA0 ntdll!NtWaitForMultipleObjects 04B4FF04 77DF2A77 04B4FED0 70C2AB38 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 04B4FF20 70C19AFA 00000001 70C2AB38 00000000 0000EA60 user32!MsgWaitForMultipleObjects 04B4FF74 70C19E82 04B4FFA0 04B4FFA4 04B4FFA8 04B4FF9C !Ordinal265 04B4FFAC 70C1A046 00000000 77E687DD 00000000 00000000 !Ordinal293 04B4FFEC 00000000 00000000 00000000 00000000 00000000 !Ordinal293 线程 ID 0x42c 的状态转储 eax=052dffdc ebx=00000002 ecx=0000013c edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=052dfe5c ebp=052dfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:05e3d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 052DFEA8 77DF2A00 052DFE80 00000001 00000000 052DFEA0 ntdll!NtWaitForMultipleObjects 052DFF04 77DF2A77 052DFED0 70C2AB38 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 052DFF20 70C19AFA 00000001 70C2AB38 00000000 0000EA60 user32!MsgWaitForMultipleObjects 052DFF74 70C19E82 052DFFA0 052DFFA4 052DFFA8 052DFF9C !Ordinal265 052DFFAC 70C1A046 00000000 77E687DD 00000000 00000000 !Ordinal293 052DFFEC 00000000 00000000 00000000 00000000 00000000 !Ordinal293 线程 ID 0x4f0 的状态转储 eax=70c1a016 ebx=00000002 ecx=00000000 edx=00000000 esi=77f88e58 edi=00000002 eip=77f88e63 esp=053dfe5c ebp=053dfea8 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000246 函数: NtWaitForMultipleObjects 77f88e58 b8e9000000 mov eax,0xe9 77f88e5d 8d542404 lea edx,[esp+0x4] ss:05f3d42f=???????? 77f88e61 cd2e int 2e 77f88e63 c21400 ret 0x14 77f88e66 8bff mov edi,edi *----> 堆栈反向跟踪 <---* FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name 053DFEA8 77DF2A00 053DFE80 00000001 00000000 053DFEA0 ntdll!NtWaitForMultipleObjects 053DFF04 77DF2A77 053DFED0 70C2AB38 0000EA60 00000041 user32!MsgWaitForMultipleObjectsEx 053DFF20 70C19AFA 00000001 70C2AB38 00000000 0000EA60 user32!MsgWaitForMultipleObjects 053DFF74 70C19E82 053DFFA0 053DFFA4 053DFFA8 053DFF9C !Ordinal265 053DFFAC 70C1A046 00000000 77E687DD 00000000 00000000 !Ordinal293 053DFFEC 00000000 00000000 00000000 00000000 00000000 !Ordinal293 发生应用程序意外错误: 应用程序: (pid=736) 时间: 2004-1-5 @ 16:13:21.046 意外情况编号: c0000005 (访问侵犯) *----> 系统信息 <----* 计算机名: CMS-CHINA 用户名: fast 处理器数量: 1 处理器类型: x86 Family 6 Model 8 Stepping 3 Windows 2000 版本: 5.0 当前内部版本号: 2195 Service Pack: 3 当前类型: Uniprocessor Free 注册的单位: ihep 注册的所有者: Kanglin He *----> 任务列表 <----* 0 Idle.exe 8 System.exe 152 smss.exe 180 csrss.exe 200 winlogon.exe 228 services.exe 240 lsass.exe 412 svchost.exe 452 spoolsv.exe 480 CDANTSRV.exe 500 svchost.exe 536 regsvc.exe 552 MSTask.exe 596 WinMgmt.exe 612 svchost.exe 860 Explorer.exe 980 Rundll32.exe 1028 daemon.exe 1040 RealPlay.exe 1000 internat.exe 1044 AcroTray.exe 876 XDICT.exe 832 wuauclt.exe 736 Acrobat.exe 1140 drwtsn32.exe 0 _Total.exe (00400000 - 00919000) (77F80000 - 77FFA000) (08000000 - 0816D000) (77E60000 - 77F35000) (77DF0000 - 77E55000) (77F40000 - 77F7C000) (77D90000 - 77DED000) (786F0000 - 7875E000) (78F90000 - 791D6000) (70BD0000 - 70C34000) (78000000 - 78046000) (71780000 - 7180A000) (77A30000 - 77B1C000) (77530000 - 77560000) (777E0000 - 777E7000) (75950000 - 75956000) (76AF0000 - 76B2D000) (777C0000 - 777DE000) (75010000 - 75020000) (77990000 - 77A2B000) (75280000 - 7529F000) (07000000 - 07027000) (05000000 - 0506F000) (09000000 - 09016000) (06000000 - 06140000) (75E00000 - 75E1A000) (6DD30000 - 6DD36000) (37F00000 - 37F0F000) (74840000 - 7484B000) (74FD0000 - 74FDA000) (74FB0000 - 74FC3000) (74FA0000 - 74FA8000) (75100000 - 7514F000) (77BC0000 - 77BCF000) (75150000 - 75156000) (750E0000 - 750F0000) (77930000 - 7795A000) (77960000 - 77984000) (70200000 - 70294000) (77400000 - 77477000) (773F0000 - 77400000) (72C50000 - 72CD5000) (1F9C0000 - 1FA36000) (6AFF0000 - 6AFF6000) (1FA50000 - 1FA60000) (44000000 - 44086000) (76AC0000 - 76AC5000) (77270000 - 772DC000) (71A20000 - 71A28000) (774A0000 - 774D2000) (77480000 - 77491000) (774F0000 - 77512000) (777F0000 - 777FE000) (75A50000 - 75A55000) (77BF0000 - 77C4E000) (750F0000 - 750FC000) (751A0000 - 751B5000) (75160000 - 75198000) (76F60000 - 76F6F000) (773A0000 - 773B5000) (039E0000 - 03A1B000) (1A400000 - 1A478000) (6D990000 - 6DA3B000) (6B020000 - 6B033000) (03C80000 - 03E7D000) (75FC0000 - 75FF3000) (781C0000 - 78200000) 线程 ID 0x45c 的状态转储 eax=01a73654 ebx=00000000 ecx=00000000 edx=77b0bd48 esi=0012fc74 edi=001900bc eip=77a9193d esp=0012fc60 ebp=0012fc98 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202 函数: UpdateDCOMSettings