API tools faq
paste
Advertisement
Guest User

tc9b17-v2

a guest
Oct 8th, 2016
252
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.19 KB | None | 0 0
raw download clone embed print report
  1. 0:014> ~* kp
  2.  
  3. 0 Id: 5d4.874 Suspend: 1 Teb: 00007ff5`ffffd000 Unfrozen
  4. Child-SP RetAddr Call Site
  5. 00000000`01c86488 00007ffa`c8892601 user32!NtUserValidateTimerCallback+0xa
  6. 00000000`01c86490 00007ffa`c88c5cd3 user32!DispatchMessageWorker+0x237
  7. 00000000`01c86510 00007ffa`c88c7732 user32!DialogBox2+0x22d
  8. 00000000`01c865a0 00007ffa`c88c99f2 user32!InternalDialogBox+0x132
  9. 00000000`01c86600 00007ffa`c88c918d user32!SoftModalMessageBox+0xee1
  10. 00000000`01c86740 00007ffa`c89181fa user32!MessageBoxWorker+0x2eb
  11. 00000000`01c868f0 00007ffa`c891826e user32!MessageBoxTimeoutW+0xba
  12. *** WARNING: Unable to verify timestamp for c:\ntapps\totalcmd\TOTALCMD64.EXE
  13. *** ERROR: Module load completed but symbols could not be loaded for c:\ntapps\totalcmd\TOTALCMD64.EXE
  14. 00000000`01c869f0 00000000`0042fd66 user32!MessageBoxW+0x4e
  15. 00000000`01c86a30 00000000`00000001 TOTALCMD64+0x2fd66
  16. 00000000`01c86a38 00000000`00000000 0x1
  17.  
  18. 1 Id: 5d4.1698 Suspend: 1 Teb: 00007ff5`ffffb000 Unfrozen
  19. Child-SP RetAddr Call Site
  20. 00000000`0492cfc8 00007ffa`c83113ed ntdll!NtWaitForMultipleObjects+0xa
  21. 00000000`0492cfd0 00007ffa`c88930f0 KERNELBASE!WaitForMultipleObjectsEx+0xe1
  22. 00000000`0492d2b0 00007ffa`c88931c4 user32!RealMsgWaitForMultipleObjectsEx+0x100
  23. 00000000`0492d360 00000000`00629a63 user32!MsgWaitForMultipleObjects+0x6c
  24. 00000000`0492d3b0 00000000`00415460 TOTALCMD64+0x229a63
  25. 00000000`0492d3b8 00000000`0492fdc0 TOTALCMD64+0x15460
  26. 00000000`0492d3c0 00000000`00234a20 0x492fdc0
  27. 00000000`0492d3c8 00000000`00000000 0x234a20
  28.  
  29. 2 Id: 5d4.a30 Suspend: 1 Teb: 00007ff5`ffff7000 Unfrozen
  30. Child-SP RetAddr Call Site
  31. 00000000`0880fbf8 00007ffa`c8311118 ntdll!NtWaitForSingleObject+0xa
  32. 00000000`0880fc00 00000000`0073d2f8 KERNELBASE!WaitForSingleObjectEx+0x94
  33. 00000000`0880fca0 00000000`00415460 TOTALCMD64+0x33d2f8
  34. 00000000`0880fca8 00000000`00000000 TOTALCMD64+0x15460
  35.  
  36. 3 Id: 5d4.1084 Suspend: 1 Teb: 00007ff5`ffff5000 Unfrozen
  37. Child-SP RetAddr Call Site
  38. 00000000`0980f6f8 00007ffa`c83113ed ntdll!NtWaitForMultipleObjects+0xa
  39. 00000000`0980f700 00007ffa`c88930f0 KERNELBASE!WaitForMultipleObjectsEx+0xe1
  40. 00000000`0980f9e0 00007ffa`c88931c4 user32!RealMsgWaitForMultipleObjectsEx+0x100
  41. 00000000`0980fa90 00000000`0073b863 user32!MsgWaitForMultipleObjects+0x6c
  42. 00000000`0980fae0 00000000`00415460 TOTALCMD64+0x33b863
  43. 00000000`0980fae8 00000000`0980fdc0 TOTALCMD64+0x15460
  44. 00000000`0980faf0 00000000`00237e80 0x980fdc0
  45. 00000000`0980faf8 00000000`00000000 0x237e80
  46.  
  47. 4 Id: 5d4.cc Suspend: 1 Teb: 00007ff5`ffece000 Unfrozen
  48. Child-SP RetAddr Call Site
  49. 00000000`0a80fb78 00007ffa`cb0e90f6 ntdll!NtWaitForWorkViaWorkerFactory+0xa
  50. 00000000`0a80fb80 00007ffa`c87413d2 ntdll!TppWorkerThread+0x746
  51. 00000000`0a80ff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  52. 00000000`0a80ff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
  53.  
  54. 5 Id: 5d4.d58 Suspend: 1 Teb: 00007ff5`ffecc000 Unfrozen
  55. Child-SP RetAddr Call Site
  56. 00000000`0b80fb78 00007ffa`cb0e90f6 ntdll!NtWaitForWorkViaWorkerFactory+0xa
  57. 00000000`0b80fb80 00007ffa`c87413d2 ntdll!TppWorkerThread+0x746
  58. 00000000`0b80ff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  59. 00000000`0b80ff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
  60.  
  61. 6 Id: 5d4.1560 Suspend: 1 Teb: 00007ff5`ffeca000 Unfrozen
  62. Child-SP RetAddr Call Site
  63. 00000000`0c80f938 00007ffa`c83113ed ntdll!NtWaitForMultipleObjects+0xa
  64. 00000000`0c80f940 00007ffa`c91b8dee KERNELBASE!WaitForMultipleObjectsEx+0xe1
  65. 00000000`0c80fc20 00007ffa`c91b8ea8 combase!WaitCoalesced(void * timer = 0x00000000`000002c4, unsigned int cHandlesOuter = 0, void ** pHandles = 0x00000000`00000000, unsigned long delayInMs = <Value unavailable error>, unsigned long tolerableDelayInMs = 0xfa0, int alertable = 0n0, unsigned long * waitResult = <Value unavailable error>)+0xaa [d:\blue\com\published\comutils\coalescedwait.cxx @ 72]
  66. 00000000`0c80fe70 00007ffa`c91b9082 combase!CROIDTable::WorkerThreadLoop(void * param = 0x00000000`00000000)+0x78 [d:\blue\com\combase\dcomrem\refcache.cxx @ 1480]
  67. 00000000`0c80fec0 00007ffa`c91b90a5 combase!CRpcThread::WorkerLoop(void)+0x162 [d:\blue\com\combase\dcomrem\threads.cxx @ 260]
  68. 00000000`0c80ff30 00007ffa`c87413d2 combase!CRpcThreadCache::RpcWorkerThreadEntry(void * param = 0x00000000`0030aa40)+0x46 [d:\blue\com\combase\dcomrem\threads.cxx @ 67]
  69. 00000000`0c80ff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  70. 00000000`0c80ff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
  71.  
  72. 7 Id: 5d4.608 Suspend: 1 Teb: 00007ff5`ffec6000 Unfrozen
  73. Child-SP RetAddr Call Site
  74. 00000000`0faaf8f8 00007ffa`c83113ed ntdll!NtWaitForMultipleObjects+0xa
  75. 00000000`0faaf900 00007ffa`c91b8dee KERNELBASE!WaitForMultipleObjectsEx+0xe1
  76. 00000000`0faafbe0 00007ffa`c91b92c2 combase!WaitCoalesced(void * timer = 0x00000000`000003a4, unsigned int cHandlesOuter = 1, void ** pHandles = 0x00000000`0faafe88, unsigned long delayInMs = <Value unavailable error>, unsigned long tolerableDelayInMs = 0xea60, int alertable = 0n0, unsigned long * waitResult = <Value unavailable error>)+0xaa [d:\blue\com\published\comutils\coalescedwait.cxx @ 72]
  77. 00000000`0faafe30 00007ffa`c91b6840 combase!CDllHost::MTAWorkerLoop(void * hEventWakeUp = 0x00000000`00000384)+0x76 [d:\blue\com\combase\objact\dllhost.cxx @ 1018]
  78. 00000000`0faafe80 00007ffa`c91a60b3 combase!CDllHost::WorkerThread(void)+0x122 [d:\blue\com\combase\objact\dllhost.cxx @ 939]
  79. 00000000`0faafec0 00007ffa`c91b90a5 combase!CRpcThread::WorkerLoop(void)+0x175 [d:\blue\com\combase\dcomrem\threads.cxx @ 260]
  80. 00000000`0faaff30 00007ffa`c87413d2 combase!CRpcThreadCache::RpcWorkerThreadEntry(void * param = 0x00000000`04a12280)+0x46 [d:\blue\com\combase\dcomrem\threads.cxx @ 67]
  81. 00000000`0faaff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  82. 00000000`0faaff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
  83.  
  84. 8 Id: 5d4.12d8 Suspend: 1 Teb: 00007ff5`ffec4000 Unfrozen
  85. Child-SP RetAddr Call Site
  86. 00000000`10aafdd8 00007ffa`c8892685 user32!NtUserGetMessage+0xa
  87. 00000000`10aafde0 00007ffa`c9143167 user32!GetMessageW+0x25
  88. 00000000`10aafe10 00007ffa`c91a6182 combase!CDllHost::STAWorkerLoop(void)+0x67 [d:\blue\com\combase\objact\dllhost.cxx @ 1093]
  89. 00000000`10aafe80 00007ffa`c91a60b3 combase!CDllHost::WorkerThread(void)+0xbe [d:\blue\com\combase\objact\dllhost.cxx @ 952]
  90. 00000000`10aafec0 00007ffa`c91b90a5 combase!CRpcThread::WorkerLoop(void)+0x175 [d:\blue\com\combase\dcomrem\threads.cxx @ 260]
  91. 00000000`10aaff30 00007ffa`c87413d2 combase!CRpcThreadCache::RpcWorkerThreadEntry(void * param = 0x00000000`04a128c0)+0x46 [d:\blue\com\combase\dcomrem\threads.cxx @ 67]
  92. 00000000`10aaff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  93. 00000000`10aaff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
  94.  
  95. 9 Id: 5d4.17f4 Suspend: 1 Teb: 00007ff5`ffec2000 Unfrozen
  96. Child-SP RetAddr Call Site
  97. 00000000`11b7fb78 00007ffa`cb0e90f6 ntdll!NtWaitForWorkViaWorkerFactory+0xa
  98. 00000000`11b7fb80 00007ffa`c87413d2 ntdll!TppWorkerThread+0x746
  99. 00000000`11b7ff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  100. 00000000`11b7ff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
  101.  
  102. 10 Id: 5d4.ad4 Suspend: 1 Teb: 00007ff5`ffec0000 Unfrozen
  103. Child-SP RetAddr Call Site
  104. 00000000`12b7fb78 00007ffa`cb0e90f6 ntdll!NtWaitForWorkViaWorkerFactory+0xa
  105. 00000000`12b7fb80 00007ffa`c87413d2 ntdll!TppWorkerThread+0x746
  106. 00000000`12b7ff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  107. 00000000`12b7ff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
  108.  
  109. 11 Id: 5d4.163c Suspend: 1 Teb: 00007ff5`ffebe000 Unfrozen
  110. Child-SP RetAddr Call Site
  111. 00000000`13b7f988 00007ffa`c83113ed ntdll!NtWaitForMultipleObjects+0xa
  112. 00000000`13b7f990 00007ffa`c91b8dee KERNELBASE!WaitForMultipleObjectsEx+0xe1
  113. 00000000`13b7fc70 00007ffa`c91b9021 combase!WaitCoalesced(void * timer = 0x00000000`00000418, unsigned int cHandlesOuter = 1, void ** pHandles = 0x00000000`06783b20, unsigned long delayInMs = <Value unavailable error>, unsigned long tolerableDelayInMs = 0x7530, int alertable = 0n1, unsigned long * waitResult = <Value unavailable error>)+0xaa [d:\blue\com\published\comutils\coalescedwait.cxx @ 72]
  114. 00000000`13b7fec0 00007ffa`c91b90a5 combase!CRpcThread::WorkerLoop(void)+0x109 [d:\blue\com\combase\dcomrem\threads.cxx @ 312]
  115. 00000000`13b7ff30 00007ffa`c87413d2 combase!CRpcThreadCache::RpcWorkerThreadEntry(void * param = 0x00000000`06783b20)+0x46 [d:\blue\com\combase\dcomrem\threads.cxx @ 67]
  116. 00000000`13b7ff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  117. 00000000`13b7ff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
  118.  
  119. 12 Id: 5d4.7ac Suspend: 1 Teb: 00007ff5`ffebc000 Unfrozen
  120. Child-SP RetAddr Call Site
  121. 00000000`14b9ebf8 00007ffa`c83113ed ntdll!NtWaitForMultipleObjects+0xa
  122. 00000000`14b9ec00 00007ffa`c88930f0 KERNELBASE!WaitForMultipleObjectsEx+0xe1
  123. 00000000`14b9eee0 00007ffa`c88931c4 user32!RealMsgWaitForMultipleObjectsEx+0x100
  124. 00000000`14b9ef90 00000000`004f6b7e user32!MsgWaitForMultipleObjects+0x6c
  125. 00000000`14b9efe0 00000000`00415460 TOTALCMD64+0xf6b7e
  126. 00000000`14b9efe8 00000000`14b9fdc0 TOTALCMD64+0x15460
  127. 00000000`14b9eff0 00000000`002356c0 0x14b9fdc0
  128. 00000000`14b9eff8 00000000`00000000 0x2356c0
  129.  
  130. 13 Id: 5d4.9cc Suspend: 1 Teb: 00007ff5`ffeba000 Unfrozen
  131. Child-SP RetAddr Call Site
  132. 00000000`15b9f7c8 00007ffa`c83113ed ntdll!NtWaitForMultipleObjects+0xa
  133. 00000000`15b9f7d0 00007ffa`c88930f0 KERNELBASE!WaitForMultipleObjectsEx+0xe1
  134. 00000000`15b9fab0 00007ffa`c88931c4 user32!RealMsgWaitForMultipleObjectsEx+0x100
  135. 00000000`15b9fb60 00000000`004fbeb6 user32!MsgWaitForMultipleObjects+0x6c
  136. 00000000`15b9fbb0 00000000`00415460 TOTALCMD64+0xfbeb6
  137. 00000000`15b9fbb8 00000000`15b9fdc0 TOTALCMD64+0x15460
  138. 00000000`15b9fbc0 00000000`002374c0 0x15b9fdc0
  139. 00000000`15b9fbc8 00000000`00000000 0x2374c0
  140.  
  141. # 14 Id: 5d4.7b0 Suspend: 1 Teb: 00007ff5`ffff9000 Unfrozen
  142. Child-SP RetAddr Call Site
  143. 00000000`077fff28 00007ffa`cb16f3a4 ntdll!DbgBreakPoint
  144. 00000000`077fff30 00007ffa`c87413d2 ntdll!DbgUiRemoteBreakin+0x34
  145. 00000000`077fff60 00007ffa`cb0c54e4 KERNEL32!BaseThreadInitThunk+0x22
  146. 00000000`077fff90 00000000`00000000 ntdll!RtlUserThreadStart+0x34
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!