API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Dec 10th, 2019
168
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 15.46 KB | None | 0 0
raw download clone embed print report
  1. Followup: Pool_corruption
  2. ---------
  3.  
  4. kd> kv
  5. # Child-SP RetAddr : Args to Child : Call Site
  6. 00 ffffa10d`5c445348 fffff800`224b6522 : 00000000`00000009 00000000`00000003 ffffa10d`5c4454b0 fffff800`2232ab90 : nt!DbgBreakPointWithStatus
  7. 01 ffffa10d`5c445350 fffff800`224b5c12 : 00000000`00000003 ffffa10d`5c4454b0 fffff800`223e2b60 00000000`0000013a : nt!KiBugCheckDebugBreak+0x12
  8. 02 ffffa10d`5c4453b0 fffff800`223ce5e7 : 00000000`00001000 00000000`00000000 00000000`00000009 fffff800`222aa572 : nt!KeBugCheck2+0x952
  9. 03 ffffa10d`5c445ab0 fffff800`22527c78 : 00000000`0000013a 00000000`00000009 ffff8ec6`00200000 ffff8ec6`04e03ec0 : nt!KeBugCheckEx+0x107
  10. 04 ffffa10d`5c445af0 fffff800`22527cd8 : 00000000`00000009 00000000`00000000 ffff8ec6`00200000 00000000`00000008 : nt!RtlpHeapHandleError+0x40
  11. 05 ffffa10d`5c445b30 fffff800`22527901 : ffff8ec6`00200100 00000000`00000000 00000000`0000002b 00000000`00000000 : nt!RtlpHpHeapHandleError+0x58
  12. 06 ffffa10d`5c445b60 fffff800`22252f23 : 00000000`00000000 ffffa10d`5c445b50 00000000`000000d0 00000000`69707355 : nt!RtlpLogHeapFailure+0x45
  13. 07 ffffa10d`5c445b90 fffff800`2257c0a9 : 00000000`00000000 fffff800`227fe225 00000000`00000000 01000000`00100000 : nt!ExFreeHeapPool+0x3a3
  14. 08 ffffa10d`5c445cb0 ffff8e96`076f02dd : ffffe50f`db2623a0 fffff800`222e69d5 ffffe50f`db262080 ffffe50f`db31a920 : nt!ExFreePool+0x9
  15. 09 ffffa10d`5c445ce0 ffff8e96`08378067 : 00000000`00000000 ffff8ec6`04e04810 ffff8ec6`04e04810 00000000`00000001 : win32kfull!Win32FreePoolImpl+0x4d
  16. 0a ffffa10d`5c445d10 ffff8e96`08354848 : ffff8ec6`02d25e28 fffff800`00000000 ffffe50f`00000000 00000000`00000000 : win32kbase!Win32FreePool+0x27
  17. 0b ffffa10d`5c445d40 ffff8e96`07612f1f : ffffe50f`dbd0a6a0 00000000`00000620 00000000`00000001 ffffe50f`daa5e9c0 : win32kbase!SetHandleFlag+0x118
  18. 0c ffffa10d`5c445d70 ffff8e96`076113f6 : 00000000`00000041 00000000`00000000 ffffa10d`5c445df0 0000008d`c5af8601 : win32kfull!OpenDesktopCompletion+0x47
  19. 0d ffffa10d`5c445da0 ffff8e96`076112eb : 00000000`00000041 0000008d`c5af8650 00000000`00000001 000001d7`123104b8 : win32kfull!_OpenDesktop+0xbe
  20. 0e ffffa10d`5c445e00 fffff800`223dfd15 : ffffe50f`db262080 ffffa10d`5c445ec0 00000000`00000001 00000000`00000000 : win32kfull!NtUserOpenDesktop+0x4b
  21. 0f ffffa10d`5c445e40 00007ff9`350724a4 : 00007ff9`09501968 00000000`00000400 00007ff9`097c4000 000001d7`12240000 : nt!KiSystemServiceCopyEnd+0x25 (TrapFrame @ ffffa10d`5c445e40)
  22. 10 0000008d`c5af8048 00007ff9`09501968 : 00000000`00000400 00007ff9`097c4000 000001d7`12240000 0000008d`c5af82e9 : win32u!NtUserOpenDesktop+0x14
  23. 11 0000008d`c5af8050 00007ff9`0957aff7 : 0000008d`c5af8650 00000000`00000001 00000000`00000041 00000000`00000041 : trcreg64+0x1968
  24. 12 0000008d`c5af8570 00007ff9`36d58d40 : 0000008d`c5af8650 00000000`00000001 00000000`00000041 00000000`00000041 : trcreg64+0x7aff7
  25. 13 0000008d`c5af8630 00007ff9`36d58cc7 : 00000000`00000041 0000008d`c5af8800 00000000`00000001 00000000`00000000 : USER32!CommonOpenDesktop+0x60
  26. 14 0000008d`c5af8690 00007ff9`323d69b0 : 00000000`00000000 00000000`00000000 00007ff9`000004d2 00000000`00000000 : USER32!OpenDesktopW+0x37
  27. 15 0000008d`c5af86d0 00007ff9`36d3313c : 00000000`00000000 00000000`0000020a 000001d7`123104b0 0000008d`c5af8730 : uxtheme!DesktopWinCallBack+0x20 [shell\themes\uxtheme\info.cpp @ 615]
  28. 16 0000008d`c5af8700 00007ff9`323d6699 : 00000000`ffffffff 000001d7`14380900 0000008d`c5af8920 00000000`00000000 : USER32!InternalEnumObjects+0xbc
  29. 17 0000008d`c5af88b0 00007ff9`323d6621 : 00000000`00000000 00000000`00000000 00000000`00000000 0000008d`00000001 : uxtheme!EnumProcessWindows+0x69 [shell\themes\uxtheme\info.cpp @ 644]
  30. 18 0000008d`c5af8920 00007ff9`36d4b279 : 00000000`00000001 00000000`00000000 00000000`00000000 00000000`00000000 : uxtheme!ThemeBroadcastChangeProc+0x61 [shell\themes\uxtheme\sethook.cpp @ 325]
  31. 19 0000008d`c5af8960 00007ff9`371ffe14 : 00000001`00000001 00000000`00000000 00000000`00000000 00000003`00000020 : USER32!__xxxClientBroadcastThemeChange+0x59
  32. 1a 0000008d`c5af89b0 00007ff9`350710c4 : 00007ff9`09501968 0000008d`c5af8c70 00000000`00000000 0000008d`c5af8a90 : ntdll!KiUserCallbackDispatcherContinue (TrapFrame @ 0000008d`c5af8878)
  33. 1b 0000008d`c5af8a18 00007ff9`09501968 : 0000008d`c5af8c70 00000000`00000000 0000008d`c5af8a90 00007ff9`00000001 : win32u!NtUserPeekMessage+0x14
  34. 1c 0000008d`c5af8a20 00007ff9`0957b8b7 : 0000008d`c5af9180 00000000`00430328 00000000`00000400 00000000`00007fff : trcreg64+0x1968
  35. 1d 0000008d`c5af8f40 00007ff9`36d49cc2 : 0000008d`c5af9180 00000000`00430328 00000000`00000400 00000000`00007fff : trcreg64+0x7b8b7
  36. 1e 0000008d`c5af9000 00007ff9`36d49c29 : 00000000`00007fff 0000008d`c5af9180 00000000`00000003 00000000`00000000 : USER32!_PeekMessage+0x42
  37. 1f 0000008d`c5af9070 00007ff9`36516f76 : 0000008d`c5af9180 00000000`00000000 00000000`00430328 00007ff9`095642f7 : USER32!PeekMessageW+0x149
  38. 20 0000008d`c5af90e0 00007ff9`36516ee9 : 0000008d`c5af9570 0000008d`c5af9180 00000000`00430328 00007ff9`00000400 : combase!CCliModalLoop::MyPeekMessage+0x52 [onecore\com\combase\dcomrem\callctrl.cxx @ 2993]
  39. 21 0000008d`c5af9150 00007ff9`36515e32 : 0000008d`c5af9570 00000000`00000001 0000008d`c5af88d8 00000000`00000000 : combase!CCliModalLoop::PeekRPCAndDDEMessage+0x49 [onecore\com\combase\dcomrem\callctrl.cxx @ 2684]
  40. 22 0000008d`c5af91c0 00007ff9`365124e5 : 00000000`00000000 000001d7`12337480 000001d7`ffffffff 000001d7`1228aa90 : combase!CCliModalLoop::BlockFn+0x262 [onecore\com\combase\dcomrem\callctrl.cxx @ 2180]
  41. 23 0000008d`c5af9280 00007ff9`3651227b : ffffffff`ffffffff 000001d7`12337480 00000000`00000000 000001d7`12337480 : combase!ModalLoop+0x9d [onecore\com\combase\dcomrem\chancont.cxx @ 166]
  42. 24 0000008d`c5af92f0 00007ff9`3652cc47 : 000001d7`1228aa90 000001d7`12337480 0000008d`c5af9430 000001d7`1228ab60 : combase!ClassicSTAThreadDispatchCrossApartmentCall+0x5b [onecore\com\combase\dcomrem\chancont.cxx @ 321]
  43. 25 (Inline Function) --------`-------- : --------`-------- --------`-------- --------`-------- --------`-------- : combase!CSyncClientCall::SwitchAptAndDispatchCall+0x325 (Inline Function @ 00007ff9`3652cc47) [onecore\com\combase\dcomrem\channelb.cxx @ 5696]
  44. 26 0000008d`c5af9330 00007ff9`36516593 : 000001d7`1228aa90 000001d7`1228aa90 000001d7`122f1c30 0000008d`c5af9be0 : combase!CSyncClientCall::SendReceive2+0x407 [onecore\com\combase\dcomrem\channelb.cxx @ 5377]
  45. 27 (Inline Function) --------`-------- : --------`-------- --------`-------- --------`-------- --------`-------- : combase!SyncClientCallRetryContext::SendReceiveWithRetry+0x24 (Inline Function @ 00007ff9`36516593) [onecore\com\combase\dcomrem\callctrl.cxx @ 1617]
  46. 28 (Inline Function) --------`-------- : --------`-------- --------`-------- --------`-------- --------`-------- : combase!CSyncClientCall::SendReceiveInRetryContext+0x24 (Inline Function @ 00007ff9`36516593) [onecore\com\combase\dcomrem\callctrl.cxx @ 567]
  47. 29 0000008d`c5af9530 00007ff9`3652ef68 : 00007ff9`36713c90 00000000`00000000 000001d7`1229af60 000001d7`1228aa90 : combase!ClassicSTAThreadSendReceive+0xa3 [onecore\com\combase\dcomrem\callctrl.cxx @ 549]
  48. 2a 0000008d`c5af9660 00007ff9`36513c54 : 00007ff9`36726901 000001d7`122d4a18 0000008d`c5af9a50 0000008d`c5af9a50 : combase!CSyncClientCall::SendReceive+0x128 [onecore\com\combase\dcomrem\ctxchnl.cxx @ 783]
  49. 2b 0000008d`c5af9890 00007ff9`3659529e : 0000008d`c5af9a50 0000008d`c5afa040 00000000`00000000 0000008d`c5afa040 : combase!CClientChannel::SendReceive+0x84 [onecore\com\combase\dcomrem\ctxchnl.cxx @ 653]
  50. 2c 0000008d`c5af9900 00007ff9`369c8b95 : 0000008d`c5af9cd0 0000008d`00000000 00000000`00000000 0000008d`c5afa040 : combase!NdrExtpProxySendReceive+0x4e [onecore\com\combase\ndr\ndrole\proxy.cxx @ 2002]
  51. 2d 0000008d`c5af9930 00007ff9`3659310b : 00007ff9`36737bc8 0000008d`c5afa070 00000000`00000060 00000000`00000000 : RPCRT4!NdrpClientCall3+0x395
  52. 2e 0000008d`c5af9c90 00007ff9`3660b802 : 00000000`00000134 000001d7`122c46a0 0000008d`c5afa0d0 0000008d`c5afa0f9 : combase!ObjectStublessClient+0x13b [onecore\com\combase\ndr\ndrole\amd64\stblsclt.cxx @ 369]
  53. 2f 0000008d`c5afa020 00007ff9`36510fea : 000001d7`122d4a18 00000000`00000001 0000008d`c5afa0d8 0000008d`c5afa0c8 : combase!ObjectStubless+0x42 [onecore\com\combase\ndr\ndrole\amd64\stubless.asm @ 176]
  54. 30 0000008d`c5afa070 00007ff9`36557b4d : 000001d7`00000002 000001d7`12322ce0 0000008d`c5afa618 000001d7`123236e0 : combase!CStdMarshal::RemoteAddRef+0x13e [onecore\com\combase\dcomrem\marshal.cxx @ 8158]
  55. 31 (Inline Function) --------`-------- : --------`-------- --------`-------- --------`-------- --------`-------- : combase!CStdMarshal::GetNeededRefs+0x1da (Inline Function @ 00007ff9`36557b4d) [onecore\com\combase\dcomrem\marshal.cxx @ 3369]
  56. 32 0000008d`c5afa150 00007ff9`36557f93 : 0000008d`00000001 000001d7`122c46a0 000001d7`12337128 000001d7`12337128 : combase!CStdMarshal::ConnectCliIPIDEntry+0x50d [onecore\com\combase\dcomrem\marshal.cxx @ 3053]
  57. 33 0000008d`c5afa220 00007ff9`36557d5c : 000001d7`122c46a0 00007ff9`371a1de1 000001d7`125b0000 00007ff9`09502823 : combase!CStdMarshal::MakeCliIPIDEntry+0x133 [onecore\com\combase\dcomrem\marshal.cxx @ 2823]
  58. 34 0000008d`c5afa320 00007ff9`36553a20 : 0000008d`c5afa408 00000000`0000002c 00000000`00000000 0000008d`c5afa600 : combase!CStdMarshal::UnmarshalIPID+0x7c [onecore\com\combase\dcomrem\marshal.cxx @ 2335]
  59. 35 0000008d`c5afa3d0 00007ff9`3654590b : 3ee6dca9`f52a0000 000001d7`1228aa90 00000000`00000000 00007ff8`fe840f4a : combase!CStdMarshal::UnmarshalObjRef+0x170 [onecore\com\combase\dcomrem\marshal.cxx @ 2194]
  60. 36 (Inline Function) --------`-------- : --------`-------- --------`-------- --------`-------- --------`-------- : combase!UnmarshalSwitch+0xa7 (Inline Function @ 00007ff9`3654590b) [onecore\com\combase\dcomrem\marshal.cxx @ 1825]
  61. 37 (Inline Function) --------`-------- : --------`-------- --------`-------- --------`-------- --------`-------- : combase!UnmarshalObjRef+0x14c (Inline Function @ 00007ff9`3654590b) [onecore\com\combase\dcomrem\marshal.cxx @ 1963]
  62. 38 0000008d`c5afa4d0 00007ff8`fe287cc2 : 000001d7`125bbc00 00007ff8`fe7a8c40 0000008d`c5afa9c8 000001d7`125bbc00 : combase!CoUnmarshalInterface+0x53b [onecore\com\combase\dcomrem\coapi.cxx @ 1993]
  63. 39 0000008d`c5afa990 00007ff8`fe287c7e : 000001d7`125bbc00 00000000`00000000 000001d7`1231bd80 000001d7`1231bd80 : IEFRAME!CoGetInterfaceAndReleaseStream_HardRef+0x2a
  64. 3a 0000008d`c5afa9c0 00007ff8`fe28793d : 000001d7`1231bd80 00000000`000020c0 000001d7`123146e8 00000000`00000001 : IEFRAME!CreateIEUserBroker+0x6a
  65. 3b 0000008d`c5afa9f0 00007ff8`fe229f79 : 0000008d`c5afa8f0 000001d7`1231bd80 000001d7`123146e8 00000000`00000000 : IEFRAME!CTabWindowManager::_InitializeIEUserBroker+0x21
  66. 3c 0000008d`c5afaa20 00007ff8`fe27c63f : 000001d7`12333c30 000001d7`1231bd80 0000008d`c5afab71 000001d7`123145d0 : IEFRAME!CTabWindowManager::_Initialize+0x91
  67. 3d 0000008d`c5afaa80 00007ff8`fe27d138 : 00000000`00000000 000001d7`12314678 000001d7`12314678 000001d7`123145d0 : IEFRAME!CTabWindowManager::CreateInstance+0x43
  68. 3e 0000008d`c5afaab0 00007ff8`fe1f25ca : 00000000`002502ac 00007ff8`fe1e0000 00000000`00000000 00000000`00000001 : IEFRAME!CBrowserFrame::_OnCreate+0x184
  69. 3f 0000008d`c5afaae0 00007ff8`fe284eae : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : IEFRAME!CBrowserFrame::v_WndProc+0x5da
  70. 40 0000008d`c5afabd0 00007ff9`36d463ed : 00000000`00000001 0000008d`c5afb6b0 00000000`00000000 00000000`80000022 : IEFRAME!CImpWndProc::s_WndProc+0x6e
  71. 41 0000008d`c5afac10 00007ff9`36d45fbc : 00000000`c0000008 00007ff8`fe284e40 00000000`002502ac 00000000`80000000 : USER32!UserCallWinProcCheckWow+0x2bd
  72. 42 0000008d`c5afada0 00007ff9`36d548d2 : 00000000`00000000 00000000`00000000 00000000`00000000 0000008d`c5afa871 : USER32!DispatchClientMessage+0x9c
  73. 43 0000008d`c5afae00 00007ff9`371ffe14 : 000001d7`127ef3f0 00000000`00000081 00000000`00000000 00000000`00000001 : USER32!__fnINLPCREATESTRUCT+0xa2
  74. 44 0000008d`c5afae60 00007ff9`35071f24 : 00007ff9`09501968 00007ff9`333f0000 00007ff9`09502823 000001d7`122e5940 : ntdll!KiUserCallbackDispatcherContinue (TrapFrame @ 0000008d`c5afad28)
  75. 45 0000008d`c5afafb8 00007ff9`09501968 : 00007ff9`333f0000 00007ff9`09502823 000001d7`122e5940 00000000`00000000 : win32u!NtUserCreateWindowEx+0x14
  76. 46 0000008d`c5afafc0 00007ff9`09566af7 : 00000000`00000000 0000008d`c5afba08 0000008d`c5afb6b0 0000008d`c5afb9c8 : trcreg64+0x1968
  77. 47 0000008d`c5afb4e0 00007ff9`36d38011 : 00000000`00000000 0000008d`c5afba08 0000008d`c5afb6b0 0000008d`c5afb9c8 : trcreg64+0x66af7
  78. 48 0000008d`c5afb5a0 00007ff9`36d37c04 : 0000008d`0000000a 000001d7`00000000 00000000`00000000 00000000`02cf0000 : USER32!VerNtUserCreateWindowEx+0x211
  79. 49 0000008d`c5afb930 00007ff9`36d37a42 : 00000000`00000258 00000000`02cf0000 00007ff8`fe7a37c0 0000008d`c5afbbf0 : USER32!CreateWindowInternal+0x1b4
  80. 4a 0000008d`c5afba90 00007ff8`fe22a364 : 0000008d`c5afbbf0 00007ff8`fe29c55a 000001d7`14c1009a 0000008d`c5afcea9 : USER32!CreateWindowExW+0x82
  81. 4b 0000008d`c5afbb20 00007ff8`fe1e5d95 : 000001d7`123145d0 0000008d`c5afcea9 000001d7`12241690 0000008d`c5afbd50 : IEFRAME!SHNoFusionCreateWindowEx+0x9c
  82. 4c 0000008d`c5afbb90 00007ff8`fe1e4d95 : 000001d7`1231486c 0000008d`00000000 000001d7`1231486c 0000008d`00020019 : IEFRAME!CBrowserFrame::_CreateFrameWindow+0x7d
  83. 4d 0000008d`c5afbd10 00007ff8`fe1e4627 : 000001d7`14370808 00000000`00031502 000001d7`1231486c 000001d7`1231486c : IEFRAME!CBrowserFrame::_InitializeFrameWindow+0x5d
  84. 4e 0000008d`c5afcdf0 00007ff8`fe1e36d3 : 0022c3a8`00000008 00000000`00000001 000001d7`122d4f50 00000000`00000000 : IEFRAME!CBrowserFrame::_Initialize+0x1c7
  85. 4f 0000008d`c5afcf10 00007ff8`fe1e268d : 000001d7`122e53d0 0000008d`c5afd050 00000000`00000000 0000008d`c5afd050 : IEFRAME!CBrowserFrame::CreateInstance+0xdf
  86. 50 0000008d`c5afcf50 00007ff8`fe1e2088 : 00000000`00000001 00000000`00000001 00000000`10000000 000001d7`122e2dc0 : IEFRAME!BrowserThreadProc+0x1f5
  87. 51 0000008d`c5afe0a0 00007ff8`fe1e1f6c : 10260621`00000005 000001d7`12241690 00000000`00000000 00000000`00000001 : IEFRAME!BrowserNewThreadProc+0xc8
  88. 52 0000008d`c5afe0e0 00007ff8`fe2c3ebb : 000001d7`12241690 000001d7`12241690 0000008d`c5aff2b0 00000000`00000001 : IEFRAME!SHOpenFolderWindow+0xec
  89. 53 0000008d`c5aff1b0 00007ff8`fe2db52e : 00000000`00000000 000001d7`1228b9c0 00000000`00000000 000001d7`1228b9c0 : IEFRAME!IEWinMain+0x20b
  90. 54 0000008d`c5aff430 00007ff8`fe2f1b64 : 000001d7`12200918 00000000`00000004 00000000`00000000 00000000`00000001 : IEFRAME!LCIERunAsFrame+0x3b6
  91. 55 0000008d`c5aff560 00007ff8`fe25d91b : 000001d7`1228b9c0 000001d7`0000000a 00000000`00000001 00000000`00000000 : IEFRAME!LCIERunAsSingleEngineFrame+0x40
  92. 56 0000008d`c5aff590 00007ff8`fe2f1bdf : 00000000`00000000 00000000`00000000 0000008d`c5aff700 00000000`00000000 : IEFRAME!LCIEStartAsFrame+0x97
  93. 57 0000008d`c5aff5d0 00007ff6`5e151c02 : 000001d7`1228b9c0 00000000`0000000a 00000000`00000001 00000000`00000000 : IEFRAME!DesktopFrameProcess+0x2f
  94. 58 0000008d`c5aff600 00007ff6`5e152429 : 00000000`00000001 00000000`00000000 00000000`0000001f 00000000`00000000 : iexplore!wWinMain+0xb52
  95. 59 0000008d`c5aff7d0 00007ff9`09785099 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : iexplore!__wmainCRTStartup+0x1c9
  96. 5a 0000008d`c5aff890 00007ff9`36847bd4 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : trcreg64+0x285099
  97. 5b 0000008d`c5aff8c0 00007ff9`371cced1 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : KERNEL32!BaseThreadInitThunk+0x14
  98. 5c 0000008d`c5aff8f0 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x21
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!