API tools faq
paste
Advertisement
Guest User

threads created by Open Dialog on Win7

a guest
Sep 14th, 2011
733
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 65.64 KB | None | 0 0
raw download clone embed print report
  1. 0:000> kb
  2. RetAddr : Args to Child : Call Site
  3. 000007fe`fdac9c43 : 00000000`00000000 00000000`002d06e0 00000000`00200000 00000000`004d0000 : ntdll!ZwCreateThreadEx
  4. 00000000`76eb65b6 : 00000000`0015e7b0 00000000`00000000 000007fe`fddc1a80 000007fe`fdd329e7 : KERNELBASE!CreateRemoteThreadEx+0x163
  5. 000007fe`fdd373d2 : 00000000`00000000 00000000`00000000 000007fe`fbaa0414 000007fe`fba90000 : kernel32!CreateThreadStub+0x36
  6. 000007fe`fba9fcf6 : 00000000`8004000a 00000000`00000001 61477469`6e490000 00000000`00000000 : msvcrt!beginthreadex+0xca
  7. 000007fe`fba9f991 : 00000000`8004000a 00000000`00000000 00000000`00000001 00000000`00000001 : DUser!ResourceManager::InitSharedThread+0xc7
  8. 000007fe`fba9f8a2 : 00000000`00000000 00000000`00000000 00000000`0015e7b0 00000000`00000000 : DUser!ResourceManager::InitContextNL+0x108
  9. 000007fe`fbaf2c83 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : DUser!InitGadgets+0x36
  10. 000007fe`f66f4d4c : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000001 : DUI70!InitThread+0x172
  11. 000007fe`f6716313 : 00000000`002b60f0 000007fe`fe9ebe0e 00000000`00000040 00000000`002c5670 : explorerframe!CNavBarDUI::Initialize+0x38
  12. 000007fe`f6716206 : 00000000`002c5670 00000000`002b60f0 00000000`00000001 00000000`00000000 : explorerframe!CNavBar::_CreateBar+0xa3
  13. 000007fe`fe125e84 : 00000000`002b60f0 00000000`00330db4 00000000`00000000 00000000`002b67b8 : explorerframe!CNavBar::ShowDW+0x1e
  14. 000007fe`fe125503 : 00000000`00000000 00000000`002cd080 00000000`00000000 00000000`0000012b : COMDLG32!CFileOpenSave::_CreateNavigationBar+0xcc
  15. 000007fe`fe1256a2 : 00000000`00000000 00000000`002b60f0 00000000`00000000 00000000`002b60f0 : COMDLG32!CFileOpenSave::_InitOpenSaveDialog+0x8f4
  16. 00000000`76dc608f : 00000000`00000000 00000000`00000001 00000000`00000001 00000000`00000000 : COMDLG32!CFileOpenSave::s_OpenSaveDlgProc+0x12b
  17. 00000000`76dc7792 : 00000000`00000110 000007fe`fe1229d0 00000000`0088e470 00000000`00930aca : USER32!UserCallDlgProcCheckWow+0x15f
  18. 00000000`76dc76c2 : 00000000`00000000 00000000`002b60f0 00000000`77344684 00000000`00000110 : USER32!DefDlgProcWorker+0xf1
  19. 00000000`76db9bd1 : 00000000`0088e470 00000000`00000001 00000000`00871058 00000000`00000001 : USER32!DefDlgProcW+0x36
  20. 00000000`76dc61c9 : 00000000`00330db4 00000000`77344684 00000000`00330db4 00000000`00930aca : USER32!UserCallWinProcCheckWow+0x1ad
  21. 00000000`76dc4ec3 : 000007fe`fe120000 00000000`00710e3e 00000000`00000001 00000000`00710e3e : USER32!InternalCreateDialog+0x13e1
  22. 00000000`76dc4f52 : 00000000`002b6b80 00000000`00710e3e 000007fe`fe1229d0 000007fe`fe1229d0 : USER32!InternalDialogBox+0x101
  23. 00000000`76dc4f88 : 00000000`00000000 00000000`00000000 00000000`00710e3e 00000000`00000000 : USER32!DialogBoxIndirectParamAorW+0x58
  24. 000007fe`fe1228e8 : 00000000`00000000 00000000`00000000 00000000`00710e3e 00000000`002b60f8 : USER32!DialogBoxIndirectParamW+0x18
  25. 00000000`ffa01ea2 : 00000000`00000000 00000000`00000000 00000600`00000008 00000000`002b6b80 : COMDLG32!CFileOpenSave::Show+0x1af
  26. 00000000`ffa02308 : 00000000`00000000 00000000`00001808 00000000`00710e3e 00000000`0015f630 : notepad!ShowOpenSaveDialog+0xd2
  27. 00000000`ffa0219b : 00000000`00000000 00000000`00710e3e 00000000`00000001 00000000`002b60f8 : notepad!InvokeOpenDialog+0x130
  28. 00000000`ffa014eb : 00000000`00000005 00000000`00000001 00000000`00000000 00000000`00000000 : notepad!NPCommand+0x358
  29. 00000000`76db9bd1 : 00000000`00000000 00000000`ffa00000 00000000`00000001 00000000`00000000 : notepad!NPWndProc+0x540
  30. 00000000`76db98da : 00000000`0015f8e0 00000000`ffa010c8 00000000`00000000 00000000`0080e390 : USER32!UserCallWinProcCheckWow+0x1ad
  31. 00000000`ffa010bc : 00000000`00228040 00000000`2e750f5f 00000000`ffa010c8 00000000`0000000a : USER32!DispatchMessageWorker+0x3b5
  32. 00000000`ffa0133c : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`002238b7 : notepad!WinMain+0x16f
  33. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : notepad!DisplayNonGenuineDlgWorker+0x2da
  34. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  35. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  36. 0:000> g
  37. ModLoad: 000007fe`faac0000 000007fe`fabea000 C:\Windows\system32\WindowsCodecs.dll
  38. ModLoad: 000007fe`fd650000 000007fe`fd6a7000 C:\Windows\system32\apphelp.dll
  39. ModLoad: 00000000`05960000 00000000`0597b000 C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
  40. ModLoad: 00000000`05940000 00000000`05950000 C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll
  41. ModLoad: 00000000`03150000 00000000`03253000 C:\Program Files\TortoiseSVN\bin\TortoiseSVN.dll
  42. ModLoad: 000007fe`f6540000 000007fe`f6547000 C:\Windows\system32\SHFOLDER.dll
  43. ModLoad: 00000000`76c40000 00000000`76d9a000 C:\Windows\system32\WININET.dll
  44. ModLoad: 00000000`774f0000 00000000`774f3000 C:\Windows\system32\Normaliz.dll
  45. ModLoad: 00000000`77110000 00000000`7731f000 C:\Windows\system32\iertutil.dll
  46. ModLoad: 00000000`76fc0000 00000000`7710d000 C:\Windows\system32\urlmon.dll
  47. ModLoad: 00000000`6eec0000 00000000`6eeea000 C:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll
  48. ModLoad: 000007fe`fe500000 000007fe`fe54d000 C:\Windows\system32\WS2_32.dll
  49. ModLoad: 000007fe`fe4e0000 000007fe`fe4e8000 C:\Windows\system32\NSI.dll
  50. ModLoad: 000007fe`fcff0000 000007fe`fd045000 C:\Windows\system32\MSWSOCK.dll
  51. ModLoad: 00000000`72900000 00000000`7299d000 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\MSVCR90.dll
  52. ModLoad: 00000000`6ee60000 00000000`6ee9d000 C:\Program Files\TortoiseSVN\bin\libaprutil_tsvn.dll
  53. ModLoad: 000007fe`fe2d0000 000007fe`fe322000 C:\Windows\system32\WLDAP32.dll
  54. ModLoad: 00000001`80000000 00000001`80010000 C:\Program Files\TortoiseSVN\bin\intl3_tsvn.dll
  55. ModLoad: 00000000`72250000 00000000`72323000 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\MSVCP90.dll
  56. ModLoad: 000007fe`fd950000 000007fe`fdab7000 C:\Windows\system32\CRYPT32.dll
  57. ModLoad: 000007fe`fd820000 000007fe`fd82f000 C:\Windows\system32\MSASN1.dll
  58. ModLoad: 00000000`10000000 00000000`1001c000 C:\Users\rom\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
  59. ModLoad: 000007fe`f63b0000 000007fe`f64d5000 C:\Windows\system32\dbghelp.dll
  60. ModLoad: 000007fe`f6310000 000007fe`f63a6000 C:\Windows\system32\msvcp60.dll
  61. ModLoad: 000007fe`f62d0000 000007fe`f6305000 C:\Windows\system32\EhStorShell.dll
  62. ModLoad: 000007fe`fdb50000 000007fe`fdd27000 C:\Windows\system32\SETUPAPI.dll
  63. ModLoad: 000007fe`fd910000 000007fe`fd946000 C:\Windows\system32\CFGMGR32.dll
  64. ModLoad: 000007fe`fdb30000 000007fe`fdb4a000 C:\Windows\system32\DEVOBJ.dll
  65. ModLoad: 000007fe`fbef0000 000007fe`fc01c000 C:\Windows\system32\PROPSYS.dll
  66. ModLoad: 000007fe`f6250000 000007fe`f62ce000 C:\Windows\System32\cscui.dll
  67. ModLoad: 000007fe`f6240000 000007fe`f624c000 C:\Windows\System32\CSCDLL.dll
  68. ModLoad: 000007fe`f8ba0000 000007fe`f8baf000 C:\Windows\system32\CSCAPI.dll
  69. Breakpoint 2 hit
  70. ntdll!ZwCreateThreadEx:
  71. 00000000`77371d90 4c8bd1 mov r10,rcx
  72. 0:000> kb
  73. RetAddr : Args to Child : Call Site
  74. 00000000`7733e406 : 00000000`002fab60 00000000`00000450 00000000`002206d8 00000000`77373518 : ntdll!ZwCreateThreadEx
  75. 00000000`7733e5ba : 00000000`00000003 00000000`002faa50 00000000`00220000 00000000`0020000a : ntdll!RtlpCreateUserThreadEx+0x136
  76. 00000000`7733e47b : 00000000`002faa50 00000000`00000000 00000000`00000000 00000000`002fab60 : ntdll!TppWaiterpSpinupThread+0x10a
  77. 00000000`7733dc71 : 00000000`002faa50 00000000`00000000 00000000`001e0000 00000000`00000000 : ntdll!TppWaiterAllocWaitSlot+0xea
  78. 00000000`7733eb3b : 00000000`00000000 00000000`002fa9d0 00000000`00000001 00000000`002fe970 : ntdll!TppWaitAlloc+0xa1
  79. 00000000`77365f62 : 00000000`00000000 00000000`002fa9d0 00000000`002fe9f8 00000000`002fa9a0 : ntdll!TppTimerpInitTimerQueueQueue+0x6b
  80. 00000000`77365e8e : 00000000`00000000 00000000`002fa9a0 00000000`002fe970 000007fe`fe3d4b80 : ntdll!TppTimerpAllocTimerQueue+0xae
  81. 00000000`7735a79c : 00000000`00000000 00000000`002fe970 00000000`00000000 00000000`002fa810 : ntdll!TppTimerpAcquirePoolTimerQueue+0x3e
  82. 00000000`7735a65d : 00000000`00000000 00000000`0015b708 000007fe`fe3d4b80 000007fe`02000002 : ntdll!TppTimerAlloc+0xdc
  83. 000007fe`fdad4c78 : 00000000`00000000 00000000`00000000 000007fe`fe3d4b80 00000000`002bef01 : ntdll!TpAllocTimer+0x8d
  84. 000007fe`fe400f74 : 00000000`002e1f80 000007fe`fe3d4b80 00000000`002fa9e8 00000000`00000000 : KERNELBASE!CreateThreadpoolTimer+0x18
  85. 000007fe`fe400f0b : 00000000`00007530 00000000`002fd920 00000000`002fa810 00000000`002fa9e8 : RPCRT4!RPC_THREAD_POOL::CreateTimer+0x34
  86. 000007fe`fe3fc9b9 : 00000000`002fd6d0 00000000`002fcd80 00000000`002fd3d0 000007fe`fe3fc5d7 : RPCRT4!GarbageCollectionNeeded+0xc3
  87. 000007fe`fe3ea54b : 00000000`00000000 00000000`00000001 00000000`0015c230 00000000`002fd4f8 : RPCRT4!LRPC_CASSOCIATION::RemoveReference+0x14c
  88. 000007fe`fe490d2a : 00000000`002fd3d0 00000000`0015b870 00000000`002fd920 00000000`0015b870 : RPCRT4!LRPC_CCALL::`scalar deleting destructor'+0x6b
  89. 000007fe`fe490dfd : 000007fe`f8bab158 000007fe`fe6d6cd0 00000000`0015c080 000007fe`f8ba9788 : RPCRT4!NdrpClientCall2+0x13d8
  90. 000007fe`fe866553 : 00000000`0015bfd0 000007fe`fe8636e2 00000000`0015bfd0 00000000`0015bfd0 : RPCRT4!NdrClientCall2+0x1d
  91. 000007fe`f8ba203e : 00000000`00000000 00000000`00000000 00000000`0015c000 00000000`00000024 : sechost!CloseServiceHandle+0x3b
  92. 000007fe`f8ba1f49 : 00000000`00000000 00000000`0015c0e0 00000000`00000024 00000000`002fc020 : CSCAPI!WPP_SF_s+0x235
  93. 000007fe`f62517b8 : 00000000`0015c0e0 00000000`002b5210 00000000`7ee84ba6 000007ff`fffdf000 : CSCAPI!OfflineFilesQueryStatus+0x6a
  94. 000007fe`fe577952 : 00000000`002f8c30 000007fe`fe728810 70dd8bac`00000000 00000000`002b4760 : cscui!DllGetClassObject+0xff
  95. 000007fe`fe561806 : 00000000`0015c1b0 00000000`0015d290 00000000`0015c260 00000000`0015d290 : ole32!CClassCache::CDllPathEntry::DllGetClassObject+0x42
  96. 000007fe`fe56243f : 00000000`002f8c30 000007fe`fe578311 00000000`0000008a 00000000`02000000 : ole32!CClassCache::CDllFnPtrMoniker::BindToObjectNoSwitch+0x26
  97. 000007fe`fe5622e8 : 00000000`002f8c30 00000000`0015cb40 00000000`00000000 00000000`00000000 : ole32!CClassCache::GetClassObject+0x5f
  98. 000007fe`fe56169a : 00000000`00000000 00000000`00000000 00000000`0015d0b0 00000000`0015c940 : ole32!CServerContextActivator::CreateInstance+0x178
  99. 000007fe`fe56192c : 00000000`00000000 00000000`0015d290 000007fe`fe729cf8 000007fe`fe587232 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  100. 000007fe`fe56199e : 000007fe`fe72a1e0 00000000`0015d2d0 00000000`0015d2d0 00000000`0015c940 : ole32!CApartmentActivator::CreateInstance+0x88
  101. 000007fe`fe586e83 : 00000000`0015cb40 000007fe`fe72a1e0 00000000`00000000 00000000`00000000 : ole32!CProcessActivator::CCICallback+0x4e
  102. 000007fe`fe586e17 : 00000000`0015cfb8 00000000`0015d2d0 00000000`0015c580 00000000`77348543 : ole32!CProcessActivator::AttemptActivation+0x33
  103. 000007fe`fe562567 : 000007fe`fe72a1e0 00000000`0015d290 00000000`00000000 00000000`00000001 : ole32!CProcessActivator::ActivateByContext+0x7f
  104. 000007fe`fe56169a : 00000000`0015cb40 00000000`0015c830 00000000`0015c940 00000000`0015d290 : ole32!CProcessActivator::CreateInstance+0x77
  105. 000007fe`fe5617a7 : 00000000`0015c600 00000000`00000000 00000000`0015c830 00000000`00000000 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  106. 000007fe`fe56169a : 00000000`0015cb40 00000000`0015d290 00000000`00000000 00000000`00000000 : ole32!CClientContextActivator::CreateInstance+0xeb
  107. 000007fe`fe562090 : 00000000`00000401 00000000`0015d240 00000000`0015d490 00000000`00000001 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  108. 000007fe`fe57760b : 00000000`00000001 00000000`0015d460 00000000`00000004 00000000`0015d610 : ole32!ICoCreateInstanceEx+0x5f5
  109. 000007fe`fe9251fd : 00000000`80040111 00000000`00297350 00000000`00297350 00000000`00000000 : ole32!CoCreateInstance+0x17b
  110. 000007fe`fe90a950 : 00000000`0000000c 00000000`00000000 00000000`00000000 000007fe`fecd3cc8 : SHELL32!_SHCoCreateInstance+0x209
  111. 000007fe`fe8ede35 : 000007fe`fecd3cc8 000007fe`fe946878 00000000`0015d910 00000000`002e4cd0 : SHELL32!SHExtCoCreateInstance+0x28
  112. 000007fe`fe8c5c54 : 00000000`002e4cd0 00000000`00000064 00000000`00000064 00000000`0015db40 : SHELL32!DCA_SHExtCoCreateInstance+0x3d
  113. 000007fe`fe8c5afc : 00000000`00000002 00000000`00000000 00000000`002e4ca0 00000000`00000004 : SHELL32!CFSIconOverlayManager::_s_LoadIconOverlayIdentifiers+0x16f
  114. 000007fe`fe8c5a50 : 00000000`00000000 00000000`00000001 00000000`00000001 00000000`002cc0d0 : SHELL32!CFSIconOverlayManager::CreateInstance+0x81
  115. 000007fe`fe8e262f : 00007744`f121af0d 00000000`00000008 000007fe`fed82490 00000000`00000000 : SHELL32!IconOverlayManagerInit+0x33
  116. 000007fe`fe8c8134 : 00000000`002cc0d0 00000000`00000000 00000000`00000000 00000000`00000000 : SHELL32!GetIconOverlayManager+0x1b
  117. 000007fe`fe9acec2 : 00000000`00000003 00000000`001e15d4 000007fe`f6809c58 00000000`00000000 : SHELL32!FileIconInit+0x641
  118. 000007fe`f6716c5d : 00000000`0029caa0 00000000`0029ca90 000007fe`f6817c20 000007fe`f68174b4 : SHELL32!SHGetImageList+0x2c
  119. 000007fe`f6716984 : 00000000`00000000 00000000`00000000 00000000`002e0300 000007fe`f6813ed0 : explorerframe!CBreadcrumbBar::InitBreadcrumbBar+0x29f
  120. 000007fe`f6716902 : 00000000`00000000 00000000`00000000 000007fe`f6813ed0 00000000`00000000 : explorerframe!CAddressBand::_EnsureBreadcrumbBar+0xbb
  121. 000007fe`f66ffb4d : 00000000`002e0300 00000000`00000001 00000000`00000000 000007fe`fdfd44e7 : explorerframe!CAddressBand::_CreateAddressBand+0x16a
  122. 000007fe`fdfcae99 : 00000000`80004005 00000000`80004005 00000000`002cd188 000007fe`f66fcf42 : explorerframe!CAddressBand::SetSite+0x86
  123. 000007fe`f66f7128 : 00000000`002e04a0 00000000`002cd168 00000000`002e04a0 00000000`002cd168 : SHLWAPI!IUnknown_SetSite+0x55
  124. 000007fe`f66f71ed : 00000000`002cd188 00000000`002e0310 00000000`00000001 00000000`002cd118 : explorerframe!CBandSite::_AddBandByID+0xb2
  125. 000007fe`f6716e0e : 00000000`002ccfe0 00000000`00000001 00000000`002cd118 00000000`00000000 : explorerframe!CBandSite::AddBand+0x19
  126. 000007fe`f67163ae : 00000000`002e0368 00000000`00000001 00000000`00000001 00000000`00000000 : explorerframe!CNavBar::_CreateBands+0x15d
  127. 000007fe`f6716206 : 00000000`002c5670 00000000`002b60f0 00000000`00000001 00000000`00000000 : explorerframe!CNavBar::_CreateBar+0x149
  128. 000007fe`fe125e84 : 00000000`002b60f0 00000000`00330db4 00000000`00000000 00000000`002b67b8 : explorerframe!CNavBar::ShowDW+0x1e
  129. 000007fe`fe125503 : 00000000`00000000 00000000`002cd080 00000000`00000000 00000000`0000012b : COMDLG32!CFileOpenSave::_CreateNavigationBar+0xcc
  130. 000007fe`fe1256a2 : 00000000`00000000 00000000`002b60f0 00000000`00000000 00000000`002b60f0 : COMDLG32!CFileOpenSave::_InitOpenSaveDialog+0x8f4
  131. 00000000`76dc608f : 00000000`00000000 00000000`00000001 00000000`00000001 00000000`00000000 : COMDLG32!CFileOpenSave::s_OpenSaveDlgProc+0x12b
  132. 00000000`76dc7792 : 00000000`00000110 000007fe`fe1229d0 00000000`0088e470 00000000`00930aca : USER32!UserCallDlgProcCheckWow+0x15f
  133. 00000000`76dc76c2 : 00000000`00000000 00000000`002b60f0 00000000`77344684 00000000`00000110 : USER32!DefDlgProcWorker+0xf1
  134. 00000000`76db9bd1 : 00000000`0088e470 00000000`00000001 00000000`00871058 00000000`00000001 : USER32!DefDlgProcW+0x36
  135. 00000000`76dc61c9 : 00000000`00330db4 00000000`77344684 00000000`00330db4 00000000`00930aca : USER32!UserCallWinProcCheckWow+0x1ad
  136. 00000000`76dc4ec3 : 000007fe`fe120000 00000000`00710e3e 00000000`00000001 00000000`00710e3e : USER32!InternalCreateDialog+0x13e1
  137. 00000000`76dc4f52 : 00000000`002b6b80 00000000`00710e3e 000007fe`fe1229d0 000007fe`fe1229d0 : USER32!InternalDialogBox+0x101
  138. 00000000`76dc4f88 : 00000000`00000000 00000000`00000000 00000000`00710e3e 00000000`00000000 : USER32!DialogBoxIndirectParamAorW+0x58
  139. 000007fe`fe1228e8 : 00000000`00000000 00000000`00000000 00000000`00710e3e 00000000`002b60f8 : USER32!DialogBoxIndirectParamW+0x18
  140. 00000000`ffa01ea2 : 00000000`00000000 00000000`00000000 00000600`00000008 00000000`002b6b80 : COMDLG32!CFileOpenSave::Show+0x1af
  141. 00000000`ffa02308 : 00000000`00000000 00000000`00001808 00000000`00710e3e 00000000`0015f630 : notepad!ShowOpenSaveDialog+0xd2
  142. 00000000`ffa0219b : 00000000`00000000 00000000`00710e3e 00000000`00000001 00000000`002b60f8 : notepad!InvokeOpenDialog+0x130
  143. 00000000`ffa014eb : 00000000`00000005 00000000`00000001 00000000`00000000 00000000`00000000 : notepad!NPCommand+0x358
  144. 00000000`76db9bd1 : 00000000`00000000 00000000`ffa00000 00000000`00000001 00000000`00000000 : notepad!NPWndProc+0x540
  145. 00000000`76db98da : 00000000`0015f8e0 00000000`ffa010c8 00000000`00000000 00000000`0080e390 : USER32!UserCallWinProcCheckWow+0x1ad
  146. 00000000`ffa010bc : 00000000`00228040 00000000`2e750f5f 00000000`ffa010c8 00000000`0000000a : USER32!DispatchMessageWorker+0x3b5
  147. 00000000`ffa0133c : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`002238b7 : notepad!WinMain+0x16f
  148. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : notepad!DisplayNonGenuineDlgWorker+0x2da
  149. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  150. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  151. 0:000> g
  152. ModLoad: 000007fe`fb6d0000 000007fe`fb705000 C:\Windows\system32\xmllite.dll
  153. ModLoad: 000007fe`f5ce0000 000007fe`f5da6000 C:\Windows\system32\MsftEdit.dll
  154. ModLoad: 000007fe`f5ca0000 000007fe`f5cda000 C:\Windows\system32\msls31.dll
  155. ModLoad: 000007fe`fc810000 000007fe`fc83d000 C:\Windows\system32\ntmarta.dll
  156. Breakpoint 2 hit
  157. ntdll!ZwCreateThreadEx:
  158. 00000000`77371d90 4c8bd1 mov r10,rcx
  159. 0:004> kb
  160. RetAddr : Args to Child : Call Site
  161. 000007fe`fdac9c43 : 00000000`00000000 00000000`03b0e1f8 00000000`002900a0 000007fe`fe8a00f0 : ntdll!ZwCreateThreadEx
  162. 00000000`76eb65b6 : 000007fe`fe9469c0 00000000`03b0e148 00000000`00000004 00000000`76db6628 : KERNELBASE!CreateRemoteThreadEx+0x163
  163. 000007fe`fdfcc8c3 : 00000000`00000208 00000000`00000000 000007fe`fe8cad9c 00000000`03b0f650 : kernel32!CreateThreadStub+0x36
  164. 000007fe`fdfcc95f : 00000000`0366f360 000007fe`fe93b7d4 00000000`03665edd 000007fe`fdfd4328 : SHLWAPI!CreateThreadWorker+0x10a
  165. 000007fe`fe8cad34 : 00000000`0367af80 000007fe`00000000 00000000`00000000 00000000`00000001 : SHLWAPI!SHCreateThread+0xf
  166. 000007fe`fe913db0 : 00000000`03b0e380 00000000`0367af68 00000000`0366f360 00000000`00000001 : SHELL32!GetItemHandlerCache+0x9a
  167. 000007fe`fe913929 : 00000000`0367af80 00007744`f284929d 00000000`03b0e470 000007fe`fe93a006 : SHELL32!SyncGetItemHandlerThreadProc+0x2c
  168. 000007fe`fe91383f : 00000000`00220518 00000000`00224be8 00000000`0000001b 00000000`00228460 : SHELL32!GetHandlerFromCache+0x10e
  169. 000007fe`fe90f30c : 00000000`00000000 00000000`00000000 00000019`00430021 00000000`0366f330 : SHELL32!CFileSysItemString::LoadHandler+0x166
  170. 000007fe`fe909501 : 00000000`80004005 00000000`03665edd 00000000`00000000 00000000`80004005 : SHELL32!CFSFolder::_BindToChild+0x45a
  171. 000007fe`fe93cae3 : 000007fe`fece3d30 00000000`0366f360 00000000`00000000 00000000`00000000 : SHELL32!CFSFolder::_Bind+0x371
  172. 000007fe`fe8d21bf : 00000000`80004005 00000000`03665c7d 00000000`00000000 00000000`00000000 : SHELL32!CFSFolder::BindToObject+0xf0
  173. 000007fe`fe93cae3 : 000007fe`fece3d30 00000000`0366f0b0 00000000`00000000 00000000`00000000 : SHELL32!CFSFolder::_Bind+0x33c
  174. 000007fe`fe93e97c : 00000000`03665c64 00000000`00000000 00000000`03665c7d 00000000`03665c64 : SHELL32!CFSFolder::BindToObject+0xf0
  175. 000007fe`fe93d720 : 9d30302b`0008d8a2 00007744`f28485cd 00000000`00000000 00000000`03b0f650 : SHELL32!CDrivesFolder::BindToObject+0xcb
  176. 000007fe`fe93d831 : 00000000`00000000 00000000`0366a5a0 000007fe`fece3d30 00000000`03665c64 : SHELL32!CRegFolder::BindToObject+0x6f
  177. 000007fe`fe93b8dc : 00000000`0031df90 00000000`03b0f5d0 00000000`00000001 00000000`00319ea8 : SHELL32!CRegFolder::_BindToItem+0xb6
  178. 000007fe`fe93ba72 : 00000000`00000000 000007fe`fece3d30 00000000`03b0f650 00000000`03665c50 : SHELL32!CRegFolder::BindToObject+0x58
  179. 000007fe`fe9e7a9c : 00000000`03b0f888 00000000`0000ffff 00000000`00000000 00000000`00000000 : SHELL32!SHBindToObject+0x7d
  180. 000007fe`fdfd3843 : 000007ff`fffd5000 00000000`0030bad0 00000000`00000000 00000000`002b6968 : SHELL32!CLibraryHandlerSink::s_GetLibraryDescriptionWorkerProc+0x50
  181. 00000000`773415ab : 00000000`002ca1b0 00000000`002ca1b0 00000000`00000000 00000000`00000001 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  182. 00000000`77340c26 : 00000000`00000000 00000000`0030bad0 00000000`002fe970 00000000`002ca428 : ntdll!RtlpTpWorkCallback+0x16b
  183. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  184. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  185. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  186. 0:004> g
  187. ModLoad: 000007fe`fd780000 000007fe`fd78f000 C:\Windows\system32\profapi.dll
  188. ModLoad: 000007fe`fb6d0000 000007fe`fb705000 C:\Windows\system32\XmlLite.dll
  189. ModLoad: 000007fe`f6060000 000007fe`f606c000 C:\Windows\system32\LINKINFO.dll
  190. ModLoad: 000007fe`fd050000 000007fe`fd067000 C:\Windows\system32\CRYPTSP.dll
  191. ModLoad: 000007fe`fcd50000 000007fe`fcd97000 C:\Windows\system32\rsaenh.dll
  192. ModLoad: 000007fe`fd760000 000007fe`fd774000 C:\Windows\system32\RpcRtRemote.dll
  193. Breakpoint 2 hit
  194. ntdll!ZwCreateThreadEx:
  195. 00000000`77371d90 4c8bd1 mov r10,rcx
  196. 0:004> kb
  197. RetAddr : Args to Child : Call Site
  198. 000007fe`fdac9c43 : 000007fe`fe550000 00000001`00000000 00fc0000`0000006e 00000000`02080000 : ntdll!ZwCreateThreadEx
  199. 00000000`76eb65b6 : 00000000`04018664 0003e749`0002f400 00000000`03662840 000007fe`fe564488 : KERNELBASE!CreateRemoteThreadEx+0x163
  200. 000007fe`fe56440f : 00000000`00000002 00000000`00000000 00000000`00002000 00000000`00000000 : kernel32!CreateThreadStub+0x36
  201. 000007fe`fe564ac4 : 00000000`00000000 00000000`00000000 00000000`0366a360 00000000`00000000 : ole32!CacheCreateThread+0x13b
  202. 000007fe`fe560ce4 : 00000000`03662840 00000000`00000000 00000000`03662840 00000000`00000000 : ole32!CROIDTable::EnsureWorkerThread+0x4d
  203. 000007fe`fe59ff00 : 00000000`0368f480 00000000`00000000 00000000`00000003 00000000`00000000 : ole32!CComApartment::InitRemoting+0x267
  204. 000007fe`fe6a3f33 : 00000000`00000000 00000000`0368f480 00000000`036897d8 00000000`03b0e088 : ole32!_chkstk+0x17678
  205. 000007fe`fe6a3fee : 000007fe`fecd51f8 00000000`03b0e1c0 00000000`00000000 00000000`00000000 : ole32!wCoMarshalInterThreadInterfaceInStream+0x53
  206. 000007fe`fe8caa8d : 00000000`00000000 00000000`036897d8 00000000`03b0e088 0000004e`00f20020 : ole32!CoMarshalInterThreadInterfaceInStream+0x5e
  207. 000007fe`fe915773 : 00000000`00000000 00000000`03b0e1c0 00000000`036430d0 00000000`00000000 : SHELL32!CItemHandlerCache::_AddToRegistrationList+0x92
  208. 000007fe`fe915582 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`036430d0 : SHELL32!CItemHandlerCache::_RegisterNotifications+0xff
  209. 000007fe`fe91529a : 00000000`0031ae00 00000000`00000000 00000000`00000020 00000000`03b0f650 : SHELL32!CItemHandlerCache::SetItemHandler+0x178
  210. 000007fe`fe913df0 : 00000000`03b0e380 00000000`0367af68 00000000`0366f360 00000000`00000001 : SHELL32!CItemHandlerCache::GetItemHandler+0x10f
  211. 000007fe`fe913929 : 00000000`0367af80 00007744`f284929d 00000000`03b0e470 000007fe`fe93a006 : SHELL32!SyncGetItemHandlerThreadProc+0x6c
  212. 000007fe`fe91383f : 00000000`00220518 00000000`00224be8 00000000`0000001b 00000000`00228460 : SHELL32!GetHandlerFromCache+0x10e
  213. 000007fe`fe90f30c : 00000000`00000000 00000000`00000000 00000019`00430021 00000000`0366f330 : SHELL32!CFileSysItemString::LoadHandler+0x166
  214. 000007fe`fe909501 : 00000000`80004005 00000000`03665edd 00000000`00000000 00000000`80004005 : SHELL32!CFSFolder::_BindToChild+0x45a
  215. 000007fe`fe93cae3 : 000007fe`fece3d30 00000000`0366f360 00000000`00000000 00000000`00000000 : SHELL32!CFSFolder::_Bind+0x371
  216. 000007fe`fe8d21bf : 00000000`80004005 00000000`03665c7d 00000000`00000000 00000000`00000000 : SHELL32!CFSFolder::BindToObject+0xf0
  217. 000007fe`fe93cae3 : 000007fe`fece3d30 00000000`0366f0b0 00000000`00000000 00000000`00000000 : SHELL32!CFSFolder::_Bind+0x33c
  218. 000007fe`fe93e97c : 00000000`03665c64 00000000`00000000 00000000`03665c7d 00000000`03665c64 : SHELL32!CFSFolder::BindToObject+0xf0
  219. 000007fe`fe93d720 : 9d30302b`0008d8a2 00007744`f28485cd 00000000`00000000 00000000`03b0f650 : SHELL32!CDrivesFolder::BindToObject+0xcb
  220. 000007fe`fe93d831 : 00000000`00000000 00000000`0366a5a0 000007fe`fece3d30 00000000`03665c64 : SHELL32!CRegFolder::BindToObject+0x6f
  221. 000007fe`fe93b8dc : 00000000`0031df90 00000000`03b0f5d0 00000000`00000001 00000000`00319ea8 : SHELL32!CRegFolder::_BindToItem+0xb6
  222. 000007fe`fe93ba72 : 00000000`00000000 000007fe`fece3d30 00000000`03b0f650 00000000`03665c50 : SHELL32!CRegFolder::BindToObject+0x58
  223. 000007fe`fe9e7a9c : 00000000`03b0f888 00000000`0000ffff 00000000`00000000 00000000`00000000 : SHELL32!SHBindToObject+0x7d
  224. 000007fe`fdfd3843 : 000007ff`fffd5000 00000000`0030bad0 00000000`00000000 00000000`002b6968 : SHELL32!CLibraryHandlerSink::s_GetLibraryDescriptionWorkerProc+0x50
  225. 00000000`773415ab : 00000000`002ca1b0 00000000`002ca1b0 00000000`00000000 00000000`00000001 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  226. 00000000`77340c26 : 00000000`00000000 00000000`0030bad0 00000000`002fe970 00000000`002ca428 : ntdll!RtlpTpWorkCallback+0x16b
  227. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  228. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  229. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  230. 0:004> g
  231. ModLoad: 000007fe`e9cd0000 000007fe`e9da7000 C:\Windows\system32\SearchFolder.dll
  232. ModLoad: 000007fe`f9a00000 000007fe`f9a54000 C:\Windows\system32\OLEACC.dll
  233. ModLoad: 000007fe`e8fd0000 000007fe`e908a000 C:\Windows\system32\UIAutomationCore.dll
  234. ModLoad: 00000000`774e0000 00000000`774e7000 C:\Windows\system32\PSAPI.DLL
  235. ModLoad: 000007fe`e8f50000 000007fe`e8fcb000 C:\Windows\System32\StructuredQuery.dll
  236. ModLoad: 000007fe`fd450000 000007fe`fd45b000 C:\Windows\System32\Secur32.dll
  237. ModLoad: 000007fe`fd620000 000007fe`fd645000 C:\Windows\System32\SSPICLI.DLL
  238. ModLoad: 000007fe`f4720000 000007fe`f473d000 C:\Windows\system32\mssprxy.dll
  239. Breakpoint 2 hit
  240. ntdll!ZwCreateThreadEx:
  241. 00000000`77371d90 4c8bd1 mov r10,rcx
  242. 0:003> kb
  243. RetAddr : Args to Child : Call Site
  244. 000007fe`fdac9c43 : 00000000`00000000 00000000`037df218 00000000`002900a0 000007fe`fe8a00f0 : ntdll!ZwCreateThreadEx
  245. 00000000`76eb65b6 : 000007fe`fe9d1228 000007fe`fdad982d 00000000`00000004 00000000`76db6628 : KERNELBASE!CreateRemoteThreadEx+0x163
  246. 000007fe`fdfcc8c3 : 00000000`00000608 00000000`00000000 000007fe`fe9d1c5c 00000000`7737598e : kernel32!CreateThreadStub+0x36
  247. 000007fe`fdfcc95f : 00000000`00000000 00000000`03dbcbf0 00000000`00000000 00000000`03dbcbf0 : SHLWAPI!CreateThreadWorker+0x10a
  248. 000007fe`fe9d1c0d : 00000000`00000002 00000000`8007000e 00000000`03dbcf30 00000000`03d9d640 : SHLWAPI!SHCreateThread+0xf
  249. 000007fe`fe9d1a9d : 00000000`00000000 00000000`00000000 00000000`00000001 00000000`03d9d640 : SHELL32!CResultSetManager::_StartRealization+0x15f
  250. 000007fe`fe9cfa5c : 00000000`03d9d640 00000000`03d9d640 00000000`03dbcf30 000007fe`00000000 : SHELL32!CResultSetManager::_SetResultSets+0x210
  251. 000007fe`fe9cf98f : 00000000`03d9d640 00000000`03d9d640 00000000`037df5f0 00000000`00000001 : SHELL32!CResultSetManager::_OnResultSetsTaskCompleted+0x98
  252. 000007fe`fe9ccb12 : 00000000`00000000 00000000`03d9d640 00000000`00000001 00000002`00000004 : SHELL32!CResultSetManager::_EnsureResultSets+0x175
  253. 000007fe`fe9cc53e : 00000000`03d85bf0 000007fe`fe9ce803 00000000`00000000 00000000`0373a7c0 : SHELL32!CResultSetManager::_GetResultWorker+0x76
  254. 000007fe`fe9cdbf4 : 00000000`002c1590 000007fe`f68180a0 00000000`00000000 000007fe`fe9ce738 : SHELL32!CResultSetManager::GetResult+0x2a
  255. 000007fe`fe9cdcca : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : SHELL32!CItem::_EnsureQueryResult+0x6c
  256. 000007fe`f673b91d : 00000000`03df93f0 00000000`00000000 00000000`00000000 00000000`00000000 : SHELL32!CItem::RealizeItem+0x80
  257. 000007fe`f673b6af : 00000000`00000001 00000000`0370ecc0 00000000`00000000 00000000`037df750 : explorerframe!CFirstPageResults::_EnumerateCollection+0x17c
  258. 000007fe`f673b649 : 00000000`00000000 000007fe`fc28007c 00000000`03df93f0 000007fe`fdac9110 : explorerframe!CFirstPageResults::RunBackgroundEnumeration+0x78
  259. 000007fe`f66fbe50 : 00000000`03df93f0 00000000`002bfb80 00000000`00000000 000007fe`fe93f19c : explorerframe!CFirstPageTask::InternalResumeRT+0xd
  260. 000007fe`fe93f0eb : 80000000`01000000 00000000`037df810 00000000`03df91b0 00000000`0000000a : explorerframe!CRunnableTask::Run+0xda
  261. 000007fe`fe942c8a : 00000000`03df91b0 00000000`00000000 00000000`03df91b0 00000000`00000002 : SHELL32!CShellTask::TT_Run+0x124
  262. 000007fe`fe942de2 : 00000000`03dd4f00 00000000`03dd4f00 00000000`00000000 00000000`002b6968 : SHELL32!CShellTaskThread::ThreadProc+0x1d2
  263. 000007fe`fdfd3843 : 000007ff`fffd7000 00000000`0030b190 00000000`002fe970 00000000`002b6968 : SHELL32!CShellTaskThread::s_ThreadProc+0x22
  264. 00000000`773415ab : 00000000`036c1d50 00000000`036c1d50 00000000`0030b190 00000000`00000001 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  265. 00000000`77340c26 : 00000000`00000000 00000000`03dd4ee0 00000000`002fe970 00000000`002ca0c8 : ntdll!RtlpTpWorkCallback+0x16b
  266. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  267. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  268. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  269. 0:003> g
  270. Breakpoint 2 hit
  271. ntdll!ZwCreateThreadEx:
  272. 00000000`77371d90 4c8bd1 mov r10,rcx
  273. 0:010> kb
  274. RetAddr : Args to Child : Call Site
  275. 000007fe`fdac9c43 : 00000000`00000000 00000000`0417f978 00000000`036b9070 000007fe`e9cd00f0 : ntdll!ZwCreateThreadEx
  276. 00000000`76eb65b6 : 000007fe`e9ce82f0 000007fe`fdad982d 00000000`00000004 00000000`76db6628 : KERNELBASE!CreateRemoteThreadEx+0x163
  277. 000007fe`fdfcc8c3 : 00000000`00000408 00000000`00000000 00000000`00000000 00000000`7737598e : kernel32!CreateThreadStub+0x36
  278. 000007fe`fdfcc95f : 00000000`00000000 00000000`036867b0 00000000`0417fac0 00000000`03d9d670 : SHLWAPI!CreateThreadWorker+0x10a
  279. 000007fe`e9ce8363 : 00000000`03dbc7e0 00000000`8007000e 00000000`00000000 80000000`00010000 : SHLWAPI!SHCreateThread+0xf
  280. 000007fe`e9ce3b09 : 00000000`03d9d670 00000000`036c1d50 00000000`036867b0 00000000`00000000 : SearchFolder!CRowsetEnumeration::s_CreateInstance+0x100
  281. 000007fe`fe9d1286 : 00000000`00000000 00000000`00000000 00000000`03d8d4b0 00000000`00000000 : SearchFolder!CQueryResultSet::RealizeResults+0x29b
  282. 000007fe`fdfcc71e : 00000000`00000000 00000000`00000608 00000000`00000000 00000000`00000000 : SHELL32!CRealizeTask::s_RealizeThreadProc+0x6f
  283. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : SHLWAPI!WrapperThreadProc+0x19b
  284. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  285. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  286. 0:010> g
  287. ModLoad: 000007fe`dccc0000 000007fe`dcd82000 C:\Windows\system32\mssvp.dll
  288. ModLoad: 000007fe`fb2e0000 000007fe`fb2fb000 C:\Windows\system32\MAPI32.dll
  289. Breakpoint 2 hit
  290. ntdll!ZwCreateThreadEx:
  291. 00000000`77371d90 4c8bd1 mov r10,rcx
  292. 0:006> kb
  293. RetAddr : Args to Child : Call Site
  294. 000007fe`fdac9c43 : 00000000`00000000 00000000`03b9eb18 00000000`036b9070 000007fe`e9cd00f0 : ntdll!ZwCreateThreadEx
  295. 00000000`76eb65b6 : 000007fe`e9cd18fc 000007fe`fdad982d 00000000`00000004 00000000`76db6628 : KERNELBASE!CreateRemoteThreadEx+0x163
  296. 000007fe`fdfcc8c3 : 00000000`00000208 00000000`00000000 000007fe`e9ce6b50 00340039`00420037 : kernel32!CreateThreadStub+0x36
  297. 000007fe`fdfcc95f : 000007fe`fe725380 00007744`f28df7db 00000000`00000000 000007fe`e9cd862b : SHLWAPI!CreateThreadWorker+0x10a
  298. 000007fe`e9ce7513 : 00000000`ffffffff 00000000`00000000 00000000`03ddf7b0 000007fe`e9cd97b5 : SHLWAPI!SHCreateThread+0xf
  299. 000007fe`e9ce7443 : 00000000`03b9ece0 00000000`00000000 00000000`ffffffff 00000000`00000000 : SearchFolder!CIndexClusionCache::_HandlePathCacheMiss+0xbd
  300. 000007fe`e9ce732c : 00000000`00000000 000007fe`e9cf5714 00000000`03eafba0 00000000`00000000 : SearchFolder!CIndexClusionCache::IsPathIncluded+0x17d
  301. 000007fe`e9ce7230 : 00000000`00000000 00000000`03eafba0 00000000`00000000 00000000`03ddf7b0 : SearchFolder!CGrepWdsResolver::_GenerateTransformedScopeString+0xf4
  302. 000007fe`e9ce70d1 : 00000000`00000000 00000000`03b9ee70 00000000`03dc4ca0 00000000`03eafbd8 : SearchFolder!CGrepWdsResolver::_GenerateScopeString+0x1b8
  303. 000007fe`e9ce6f15 : 00000000`03eafba0 00000000`00000000 00000000`00000001 00000000`00000000 : SearchFolder!CGrepWdsResolver::_TryResolveToWDS+0x189
  304. 000007fe`e9cda643 : 00000000`0368a998 00000000`00000000 00000000`03dc5a50 00000000`00000000 : SearchFolder!CGrepWdsResolver::ResolveProviders+0xa2
  305. 000007fe`e9cda584 : 00000000`00000000 00000000`00000000 00000000`00000000 000007fe`e9cd8e16 : SearchFolder!GetProviderConfigsFromResolver+0x83
  306. 000007fe`e9cda48d : 00000000`00000000 00000000`036b1110 000007fe`feceacb8 00000000`03b9efe0 : SearchFolder!GetProviderConfigsForItem+0xc6
  307. 000007fe`e9cda32f : 00000000`0368a958 00000000`00000000 00000000`00000000 00000000`002f4380 : SearchFolder!CResultSetFactory::_CreateProviderConfigs+0xed
  308. 000007fe`e9cda7cd : 00000000`00000000 00000000`00000000 000007fe`feceacb8 00000000`002f4380 : SearchFolder!CResultSetFactory::_GetProviderConfigs+0x83
  309. 000007fe`fe9d56e5 : 00000000`00000000 00000000`0368d500 000007fe`fecf62e8 00000000`03d826f0 : SearchFolder!CResultSetFactory::CreateResultSets+0x189
  310. 000007fe`fe9d558f : 00000000`0368d500 00000000`0368d500 00000000`03b9f230 00000000`03dc4b40 : SHELL32!CResultHandlerFactory::_CreatePropertyQueries+0x101
  311. 000007fe`fe9d5c06 : 00000000`03dc4ae0 000007fe`fecebf68 00000000`00000000 000007fe`fdfd44e7 : SHELL32!CResultHandlerFactory::_FillExtractedProperties+0x73
  312. 000007fe`fe9d52a7 : 00000000`03d77390 00000000`00000000 00000000`03d77390 00000000`03dbc4c0 : SHELL32!CResultHandlerFactory::FillPropertiesForResults+0xbb
  313. 000007fe`fe90c684 : 00000000`03e969b0 00000000`03ddf510 00000000`00000000 00000000`00000000 : SHELL32!CFillPropertiesTask::InternalResumeRT+0x121
  314. 000007fe`fe93f0eb : 80000000`01000000 00000000`03b9f370 00000000`03e969b0 00000000`0000000a : SHELL32!CRunnableTask::Run+0xda
  315. 000007fe`fe942c8a : 00000000`03e969b0 00000000`00000000 00000000`03e969b0 00000000`00000002 : SHELL32!CShellTask::TT_Run+0x124
  316. 000007fe`fe942de2 : 00000000`03dc4880 00000000`03dc4880 00000000`00000000 00000000`002b6968 : SHELL32!CShellTaskThread::ThreadProc+0x1d2
  317. 000007fe`fdfd3843 : 000007ff`fffae000 00000000`0030b190 00000000`002fe970 00000000`002b6968 : SHELL32!CShellTaskThread::s_ThreadProc+0x22
  318. 00000000`773415ab : 00000000`036c2650 00000000`036c2650 00000000`03b9f628 00000000`00000003 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  319. 00000000`77336bd2 : 00000000`00000000 00000000`03dc4840 00000000`002fe970 00000000`036c12d8 : ntdll!RtlpTpWorkCallback+0x16b
  320. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x6c9
  321. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  322. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  323. 0:006> g
  324. ModLoad: 000007fe`ee3e0000 000007fe`ee460000 C:\Windows\system32\ntshrui.dll
  325. ModLoad: 000007fe`fd2d0000 000007fe`fd2f3000 C:\Windows\system32\srvcli.dll
  326. ModLoad: 000007fe`fb5a0000 000007fe`fb5ab000 C:\Windows\system32\slc.dll
  327. ModLoad: 000007fe`f60b0000 000007fe`f619e000 C:\Windows\system32\actxprxy.dll
  328. ModLoad: 000007fe`ed350000 000007fe`ed3d9000 C:\Program Files\Internet Explorer\ieproxy.dll
  329. ModLoad: 000007fe`ed8c0000 000007fe`ed8df000 C:\Windows\system32\thumbcache.dll
  330. ModLoad: 000007fe`f6070000 000007fe`f60a4000 C:\Windows\system32\SHDOCVW.dll
  331. ModLoad: 000007fe`f04a0000 000007fe`f0f08000 C:\Windows\system32\ieframe.DLL
  332. ModLoad: 000007fe`f5580000 000007fe`f571c000 C:\Windows\system32\NetworkExplorer.dll
  333. ModLoad: 000007fe`f7550000 000007fe`f7568000 C:\Windows\system32\MPR.dll
  334. ModLoad: 000007fe`fc080000 000007fe`fc08a000 C:\Windows\System32\drprov.dll
  335. ModLoad: 000007fe`fcb40000 000007fe`fcb7d000 C:\Windows\System32\WINSTA.dll
  336. ModLoad: 000007fe`fb330000 000007fe`fb352000 C:\Windows\System32\ntlanman.dll
  337. ModLoad: 000007fe`fd8d0000 000007fe`fd90a000 C:\Windows\system32\WINTRUST.dll
  338. ModLoad: 000007fe`fb310000 000007fe`fb32c000 C:\Windows\System32\davclnt.dll
  339. ModLoad: 000007fe`fb300000 000007fe`fb30a000 C:\Windows\System32\DAVHLPR.dll
  340. ModLoad: 000007fe`fa150000 000007fe`fa165000 C:\Windows\system32\wkscli.dll
  341. ModLoad: 000007fe`fa190000 000007fe`fa19c000 C:\Windows\system32\netutils.dll
  342. (558.f70): Unknown exception - code 000006ba (first chance)
  343. ModLoad: 000007fe`e35a0000 000007fe`e3811000 C:\Windows\system32\wpdshext.dll
  344. ModLoad: 000007fe`fb5f0000 000007fe`fb62b000 C:\Windows\system32\WINMM.dll
  345. ModLoad: 000007fe`fbbe0000 000007fe`fbdf5000 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_2b24536c71ed437a\gdiplus.dll
  346. ModLoad: 000007fe`f79e0000 000007fe`f7a9d000 C:\Windows\system32\PortableDeviceApi.dll
  347. ModLoad: 000007fe`f6d50000 000007fe`f6d89000 C:\Windows\system32\PortableDeviceTypes.dll
  348. Breakpoint 2 hit
  349. ntdll!ZwCreateThreadEx:
  350. 00000000`77371d90 4c8bd1 mov r10,rcx
  351. 0:003> kb
  352. RetAddr : Args to Child : Call Site
  353. 000007fe`fdac9c43 : 00000000`0038cdc0 000007fe`f79e4b4a 00000000`0038cdc0 000007fe`fdc3a6d0 : ntdll!ZwCreateThreadEx
  354. 00000000`76eb65b6 : 000007fe`fc27fbe4 000007fe`e35a2f1b 00000000`00000000 00000000`042d1d20 : KERNELBASE!CreateRemoteThreadEx+0x163
  355. 000007fe`e35ef99d : 00000000`03f3b3f0 000007fe`e367c3f8 00000000`00000000 00000000`00000000 : kernel32!CreateThreadStub+0x36
  356. 000007fe`e35efe6f : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : wpdshext!CDeviceCache::s_EnsureDeviceCache+0x1ed
  357. 000007fe`e35a4b0c : 00000000`00000000 00000000`03f3ce90 163449fb`00000006 00000000`00000000 : wpdshext!CDeviceCache::s_AddToCache+0x107
  358. 000007fe`e35a3629 : 00000000`042e6f60 00000000`03ea79b0 00000000`00000001 00000000`037df6e8 : wpdshext!CDeviceEnum::_Init+0x349
  359. 000007fe`fe9ead4b : 00000000`03ea79b0 00000000`00000000 00000000`03ea4840 000007fe`fe8de413 : wpdshext!CDeviceEnum::Next+0x138
  360. 000007fe`f672c80a : ffffffff`00000002 00000000`03de4c90 00000000`00000000 00000000`00000000 : SHELL32!CRegFolderEnum::Next+0x225
  361. 000007fe`f66fbe50 : 00000000`042f5f10 00000000`0429e320 00000000`00000000 00000000`00000000 : explorerframe!CNscEnumTask::InternalResumeRT+0x3d4
  362. 000007fe`fe93f0eb : 80000000`01000000 00000000`037df810 00000000`042f5f10 00000000`0000000a : explorerframe!CRunnableTask::Run+0xda
  363. 000007fe`fe942c8a : 00000000`042f5f10 00000000`00000000 00000000`042f5f10 00000000`00000002 : SHELL32!CShellTask::TT_Run+0x124
  364. 000007fe`fe942de2 : 00000000`03dd4f00 00000000`03dd4f00 00000000`00000000 00000000`002b6968 : SHELL32!CShellTaskThread::ThreadProc+0x1d2
  365. 000007fe`fdfd3843 : 000007ff`fffd7000 00000000`0030b190 00000000`002fe970 00000000`002b6968 : SHELL32!CShellTaskThread::s_ThreadProc+0x22
  366. 00000000`773415ab : 00000000`036c1d50 00000000`036c1d50 00000000`0030b190 00000000`00000001 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  367. 00000000`77340c26 : 00000000`00000000 00000000`03dd4ee0 00000000`002fe970 00000000`002ca0c8 : ntdll!RtlpTpWorkCallback+0x16b
  368. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  369. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  370. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  371. 0:003> g
  372. ModLoad: 000007fe`ed890000 000007fe`ed8b7000 C:\Windows\system32\EhStorAPI.dll
  373. ModLoad: 000007fe`fb2a0000 000007fe`fb2b1000 C:\Windows\system32\NetworkItemFactory.dll
  374. ModLoad: 000007fe`fb410000 000007fe`fb41d000 C:\Windows\system32\dtsh.dll
  375. ModLoad: 000007fe`fc8a0000 000007fe`fc95b000 C:\Windows\system32\FirewallAPI.dll
  376. Breakpoint 2 hit
  377. ntdll!ZwCreateThreadEx:
  378. 00000000`77371d90 4c8bd1 mov r10,rcx
  379. 0:008> kb
  380. RetAddr : Args to Child : Call Site
  381. 000007fe`fdac9c43 : 00000000`00000000 00000000`00000000 00000000`00000002 00000000`00320000 : ntdll!ZwCreateThreadEx
  382. 00000000`76eb65b6 : 00000000`00000000 000007fe`fdac2d10 000007fe`fddc1a80 000007fe`fdd329e7 : KERNELBASE!CreateRemoteThreadEx+0x163
  383. 000007fe`fdd373d2 : 00000000`00000000 00000000`00000000 000007fe`fb4140d0 00000000`00000000 : kernel32!CreateThreadStub+0x36
  384. 000007fe`fb412382 : 00000000`0038cdc0 00000000`0409e070 00000000`80000000 00000000`00000000 : msvcrt!beginthreadex+0xca
  385. 000007fe`fb4126f9 : 00000000`00000000 00000000`0409f0b0 00000000`0409e080 00000000`0409dfd0 : dtsh!CDetectionAndSharing::FinalConstruct+0xb2
  386. 000007fe`fb41257a : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : dtsh!ATL::CComCreator<ATL::CComObject<CDetectionAndSharing> >::CreateInstance+0xd1
  387. 000007fe`fb412296 : 00000000`0409e068 00000000`0409f0b0 00007744`f53da270 00000000`00000000 : dtsh!ATL::CComCreator2<ATL::CComCreator<ATL::CComObject<CDetectionAndSharing> >,ATL::CComFailCreator<-2147221232> >::CreateInstance+0xe
  388. 000007fe`fe562363 : 00000000`0409edd8 00000000`00000000 00000000`00000000 00000000`00000000 : dtsh!ATL::CComClassFactory::CreateInstance+0x52
  389. 000007fe`fe56169a : 00000000`00000000 00000000`00000000 00000000`0409eed0 00000000`0409e760 : ole32!CServerContextActivator::CreateInstance+0x1f3
  390. 000007fe`fe56192c : 00000000`00000000 00000000`0409f0b0 000007fe`fe729cf8 000007fe`fe587232 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  391. 000007fe`fe56199e : 000007fe`fe72a1e0 00000000`0409f0f0 00000000`0409f0f0 00000000`0409e760 : ole32!CApartmentActivator::CreateInstance+0x88
  392. 000007fe`fe586e83 : 00000000`0409e960 000007fe`fe72a1e0 00000000`00000000 00000000`00000000 : ole32!CProcessActivator::CCICallback+0x4e
  393. 000007fe`fe586e17 : 00000000`0409edd8 00000000`0409f0f0 00000000`0409e3a0 00000000`77348543 : ole32!CProcessActivator::AttemptActivation+0x33
  394. 000007fe`fe562567 : 000007fe`fe72a1e0 00000000`0409f0b0 00000000`00000000 00000000`00000003 : ole32!CProcessActivator::ActivateByContext+0x7f
  395. 000007fe`fe56169a : 00000000`0409e960 00000000`0409e650 00000000`0409e760 00000000`0409f0b0 : ole32!CProcessActivator::CreateInstance+0x77
  396. 000007fe`fe5617a7 : 00000000`0409e420 00000000`00000000 00000000`0409e650 00000000`00000000 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  397. 000007fe`fe56169a : 00000000`0409e960 00000000`0409f0b0 00000000`00000000 00000000`00000000 : ole32!CClientContextActivator::CreateInstance+0xeb
  398. 000007fe`fe562090 : 00000000`00000003 00000000`0409f060 00000000`0409f2b0 00000000`00000001 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  399. 000007fe`fe57760b : 00000000`0430b780 00000000`00000003 00000000`036a0ae0 000007fe`fe93aeda : ole32!ICoCreateInstanceEx+0x5f5
  400. 000007fe`fb2a444a : 00007744`f53d82dd 00000000`00000000 00000000`03f1d878 00000000`0409f420 : ole32!CoCreateInstance+0x17b
  401. 000007fe`f5583ba0 : 00000000`00000000 00000000`03f1c760 00000000`0409f448 000007fe`f55813ac : NetworkItemFactory!CNetworkItemFactory::_RefreshQuery+0x4a
  402. 000007fe`fe8d72ee : 00000000`03f1c760 00000000`00000000 00000000`0409f520 000007fe`fdfd11ff : NetworkExplorer!CNetworkExplorerFolder::EnumObjects+0x48
  403. 000007fe`f672c770 : ffffffff`fffffffe 00000000`76db62b2 80010000`02010000 00000000`00000000 : SHELL32!CRegFolder::EnumObjects+0x64
  404. 000007fe`f66fbe50 : 00000000`042f5d70 00000000`0429e270 00000000`00000000 00000000`00000000 : explorerframe!CNscEnumTask::InternalResumeRT+0x268
  405. 000007fe`fe93f0eb : 80000000`01000000 00000000`0409f650 00000000`042f5d70 00000000`0000000a : explorerframe!CRunnableTask::Run+0xda
  406. 000007fe`fe942c8a : 00000000`042f5d70 00000000`00000000 00000000`042f5d70 00000000`00000002 : SHELL32!CShellTask::TT_Run+0x124
  407. 000007fe`fe942de2 : 00000000`03f3f910 00000000`03f3f910 00000000`00000000 00000000`002b6968 : SHELL32!CShellTaskThread::ThreadProc+0x1d2
  408. 000007fe`fdfd3843 : 000007ff`fffaa000 00000000`0030b190 00000000`002fe970 00000000`002b6968 : SHELL32!CShellTaskThread::s_ThreadProc+0x22
  409. 00000000`773415ab : 00000000`036c2800 00000000`036c2800 00007744`f53de54b 00000000`00000002 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  410. 00000000`77340c26 : 00000000`00000000 00000000`03f3f930 00000000`002fe970 00000000`036c24b8 : ntdll!RtlpTpWorkCallback+0x16b
  411. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  412. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  413. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  414. 0:008> g
  415. Breakpoint 2 hit
  416. ntdll!ZwCreateThreadEx:
  417. 00000000`77371d90 4c8bd1 mov r10,rcx
  418. 0:008> kb
  419. RetAddr : Args to Child : Call Site
  420. 000007fe`fdac9c43 : 00000000`00000000 00000000`0409f208 00000000`042d7530 000007fe`fb2a00f0 : ntdll!ZwCreateThreadEx
  421. 00000000`76eb65b6 : 000007fe`fb2a5dcc 000007fe`fdad982d 00000000`00000004 00000000`76db6628 : KERNELBASE!CreateRemoteThreadEx+0x163
  422. 000007fe`fdfcc8c3 : 00000000`00000010 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!CreateThreadStub+0x36
  423. 000007fe`fdfcc95f : 00000000`03de4660 000007fe`fe93aa35 00000000`00000002 00000000`03de4640 : SHLWAPI!CreateThreadWorker+0x10a
  424. 000007fe`fb2a6940 : 00000000`00000001 00000000`80004005 00000000`03de4660 00000000`03f1c7e0 : SHLWAPI!SHCreateThread+0xf
  425. 000007fe`fb2a5d8c : 00000000`03f1d8a0 00000000`03f1c7e0 00000000`03f1c760 00000000`00000001 : NetworkItemFactory!CProfileCache::Initialize+0xd0
  426. 000007fe`fb2a43e0 : 00000000`00000000 00000000`0409f448 00000000`00000001 00000000`03f1c760 : NetworkItemFactory!CProfileCache_CreateInstance+0x94
  427. 000007fe`fb2a44fc : 00000000`03f1c760 00000000`00000000 00000000`03f1d878 00000000`0409f420 : NetworkItemFactory!CNetworkItemFactory::_InitializeDataSource+0xe4
  428. 000007fe`f5583ba0 : 00000000`00000000 00000000`03f1c760 00000000`0409f448 000007fe`f55813ac : NetworkItemFactory!CNetworkItemFactory::_RefreshQuery+0xfc
  429. 000007fe`fe8d72ee : 00000000`03f1c760 00000000`00000000 00000000`0409f520 000007fe`fdfd11ff : NetworkExplorer!CNetworkExplorerFolder::EnumObjects+0x48
  430. 000007fe`f672c770 : ffffffff`fffffffe 00000000`76db62b2 80010000`02010000 00000000`00000000 : SHELL32!CRegFolder::EnumObjects+0x64
  431. 000007fe`f66fbe50 : 00000000`042f5d70 00000000`0429e270 00000000`00000000 00000000`00000000 : explorerframe!CNscEnumTask::InternalResumeRT+0x268
  432. 000007fe`fe93f0eb : 80000000`01000000 00000000`0409f650 00000000`042f5d70 00000000`0000000a : explorerframe!CRunnableTask::Run+0xda
  433. 000007fe`fe942c8a : 00000000`042f5d70 00000000`00000000 00000000`042f5d70 00000000`00000002 : SHELL32!CShellTask::TT_Run+0x124
  434. 000007fe`fe942de2 : 00000000`03f3f910 00000000`03f3f910 00000000`00000000 00000000`002b6968 : SHELL32!CShellTaskThread::ThreadProc+0x1d2
  435. 000007fe`fdfd3843 : 000007ff`fffaa000 00000000`0030b190 00000000`002fe970 00000000`002b6968 : SHELL32!CShellTaskThread::s_ThreadProc+0x22
  436. 00000000`773415ab : 00000000`036c2800 00000000`036c2800 00007744`f53de54b 00000000`00000002 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  437. 00000000`77340c26 : 00000000`00000000 00000000`03f3f930 00000000`002fe970 00000000`036c24b8 : ntdll!RtlpTpWorkCallback+0x16b
  438. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  439. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  440. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  441. 0:008> g
  442. ModLoad: 000007fe`f7d20000 000007fe`f7d2c000 C:\Windows\System32\npmproxy.dll
  443. Breakpoint 2 hit
  444. ntdll!ZwCreateThreadEx:
  445. 00000000`77371d90 4c8bd1 mov r10,rcx
  446. 0:008> kb
  447. RetAddr : Args to Child : Call Site
  448. 000007fe`fdac9c43 : 00000000`00000000 00000000`0409f268 00000000`042d7530 000007fe`fb2a00f0 : ntdll!ZwCreateThreadEx
  449. 00000000`76eb65b6 : 000007fe`fb2a4114 000007fe`fdad982d 00000000`00000004 00000000`76db6628 : KERNELBASE!CreateRemoteThreadEx+0x163
  450. 000007fe`fdfcc8c3 : 00000000`00000010 00000000`00000000 00000000`00000000 000007fe`fb2a0000 : kernel32!CreateThreadStub+0x36
  451. 000007fe`fdfcc95f : 00000000`00000000 000007fe`fb2a5497 00000000`03f1d8a0 00000000`03f1c7e0 : SHLWAPI!CreateThreadWorker+0x10a
  452. 000007fe`fb2a41f1 : 00000000`043734d0 00000000`03f1c760 00000000`00000001 00000000`03f1c760 : SHLWAPI!SHCreateThread+0xf
  453. 000007fe`fb2a4518 : 00000000`03f1c760 00000000`00000001 00000000`03f1d878 00000000`0409f420 : NetworkItemFactory!CNetworkItemFactory::_StartAllFDQueries+0xa9
  454. 000007fe`f5583ba0 : 00000000`00000000 00000000`03f1c760 00000000`0409f448 000007fe`f55813ac : NetworkItemFactory!CNetworkItemFactory::_RefreshQuery+0x118
  455. 000007fe`fe8d72ee : 00000000`03f1c760 00000000`00000000 00000000`0409f520 000007fe`fdfd11ff : NetworkExplorer!CNetworkExplorerFolder::EnumObjects+0x48
  456. 000007fe`f672c770 : ffffffff`fffffffe 00000000`76db62b2 80010000`02010000 00000000`00000000 : SHELL32!CRegFolder::EnumObjects+0x64
  457. 000007fe`f66fbe50 : 00000000`042f5d70 00000000`0429e270 00000000`00000000 00000000`00000000 : explorerframe!CNscEnumTask::InternalResumeRT+0x268
  458. 000007fe`fe93f0eb : 80000000`01000000 00000000`0409f650 00000000`042f5d70 00000000`0000000a : explorerframe!CRunnableTask::Run+0xda
  459. 000007fe`fe942c8a : 00000000`042f5d70 00000000`00000000 00000000`042f5d70 00000000`00000002 : SHELL32!CShellTask::TT_Run+0x124
  460. 000007fe`fe942de2 : 00000000`03f3f910 00000000`03f3f910 00000000`00000000 00000000`002b6968 : SHELL32!CShellTaskThread::ThreadProc+0x1d2
  461. 000007fe`fdfd3843 : 000007ff`fffaa000 00000000`0030b190 00000000`002fe970 00000000`002b6968 : SHELL32!CShellTaskThread::s_ThreadProc+0x22
  462. 00000000`773415ab : 00000000`036c2800 00000000`036c2800 00007744`f53de54b 00000000`00000002 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  463. 00000000`77340c26 : 00000000`00000000 00000000`03f3f930 00000000`002fe970 00000000`036c24b8 : ntdll!RtlpTpWorkCallback+0x16b
  464. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  465. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  466. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  467. 0:008> g
  468. ModLoad: 000007fe`f8e80000 000007fe`f8eb3000 C:\Windows\system32\FunDisc.dll
  469. ModLoad: 000007fe`fb6b0000 000007fe`fb6c9000 C:\Windows\system32\ATL.DLL
  470. Breakpoint 2 hit
  471. ntdll!ZwCreateThreadEx:
  472. 00000000`77371d90 4c8bd1 mov r10,rcx
  473. 0:015> kb
  474. RetAddr : Args to Child : Call Site
  475. 000007fe`fdac9c43 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!ZwCreateThreadEx
  476. 00000000`76eb65b6 : 00000000`00000001 00000000`0040003e 00000000`04e6f830 00000000`042d7350 : KERNELBASE!CreateRemoteThreadEx+0x163
  477. 000007fe`f8e85f75 : 060c0000`00000000 00000000`003e4420 00000000`00000000 000007fe`f8e80000 : kernel32!CreateThreadStub+0x36
  478. 000007fe`f8e85dcb : 00000000`00000060 00000000`003e4420 00000000`00000000 00000000`00391150 : FunDisc!CNotificationQueue::Initialize+0x21b
  479. 000007fe`f8e8168a : 00000000`00000000 00000000`00391150 00000000`0038c700 00000000`0038c700 : FunDisc!CNotificationQueue::SetQueryWorker+0xab
  480. 000007fe`f8e81411 : 00000000`00000000 00000000`00000000 00000000`00000001 00000000`00391150 : FunDisc!CQueryWorker::Initialize+0x273
  481. 000007fe`f8e81315 : 80010000`00000000 00000000`04e6fc40 00000000`00000000 00000000`00000000 : FunDisc!CFunctionDiscoveryWorker::CreateInstanceCollectionQuery+0xa3
  482. 000007fe`fb2a3d66 : 000007fe`fb2ad160 000007fe`fb2a1a20 00000000`03f1c760 000007fe`fe572c8c : FunDisc!CFunctionDiscovery::CreateInstanceCollectionQuery+0x138
  483. 000007fe`fb2a4062 : 00000000`00000000 00000000`00000000 000007fe`fb2ad160 00000000`00000000 : NetworkItemFactory!CNetworkItemFactory::_StartFDQuery+0x4e
  484. 000007fe`fb2a4133 : 00000000`0038abc0 00000000`00000000 00000000`00000000 00000000`03f1c760 : NetworkItemFactory!CNetworkItemFactory::s_StartFDInMTA+0x96
  485. 000007fe`fdfcc71e : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : NetworkItemFactory!FDBackgroundThreadHandler+0x1f
  486. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : SHLWAPI!WrapperThreadProc+0x19b
  487. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  488. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  489. 0:015> g
  490. ModLoad: 000007fe`f9d40000 000007fe`f9f32000 C:\Windows\System32\msxml6.dll
  491. ModLoad: 000007fe`ed590000 000007fe`ed5a7000 C:\Windows\system32\fdproxy.dll
  492. ModLoad: 000007fe`fb2e0000 000007fe`fb2fd000 C:\Windows\System32\fdwcn.dll
  493. ModLoad: 000007fe`faec0000 000007fe`faee2000 C:\Windows\System32\wcnapi.dll
  494. Breakpoint 2 hit
  495. ntdll!ZwCreateThreadEx:
  496. 00000000`77371d90 4c8bd1 mov r10,rcx
  497. 0:015> kb
  498. RetAddr : Args to Child : Call Site
  499. 000007fe`fdac9c43 : 00000001`043ea1d0 00000000`00320000 00000000`00000000 000007fe`fe6c30e7 : ntdll!ZwCreateThreadEx
  500. 00000000`76eb65b6 : 00000000`00000000 00000000`04e6f6c0 00000000`04e6f440 000007fe`faec57c0 : KERNELBASE!CreateRemoteThreadEx+0x163
  501. 000007fe`faec9378 : 00000000`00000000 00000000`003e5b30 00000000`00000000 000007fe`faedd248 : kernel32!CreateThreadStub+0x36
  502. 000007fe`faec8cd6 : 00000000`00000000 000007fe`faedd248 00000000`003e5c50 000007fe`faedd248 : wcnapi!CWcnApcThread::Init+0x1c0
  503. 000007fe`faed028a : 000007fe`faec0000 00000000`003e5c50 00000000`00000000 00000000`003e5a70 : wcnapi!CWcnApcThread::TryGetReference+0x18e
  504. 000007fe`faecc5e4 : 00000000`00000000 00000000`00000000 00000000`003e5a70 00000000`00000000 : wcnapi!CWCNDiscoveryProvider::FinalConstruct+0x172
  505. 000007fe`faecbc16 : 00000000`00000000 00000000`04e6f440 00000000`04e6e680 00000000`8007000e : wcnapi!ATL::CComCreator<ATL::CComObject<CWCNDiscoveryProvider> >::CreateInstance+0x150
  506. 000007fe`faec8556 : 00000000`04e6e678 00000000`04e6f6c0 00007744`f5d29840 00000000`00000000 : wcnapi!ATL::CComCreator2<ATL::CComCreator<ATL::CComObject<CWCNDiscoveryProvider> >,ATL::CComFailCreator<-2147221232> >::CreateInstance+0xe
  507. 000007fe`fe562363 : 00000000`04e6f3e8 00000000`00000000 00000000`00000000 00000000`00000000 : wcnapi!ATL::CComClassFactory::CreateInstance+0x52
  508. 000007fe`fe56169a : 00000000`00000000 00000000`00000000 00000000`04e6f4e0 00000000`04e6ed70 : ole32!CServerContextActivator::CreateInstance+0x1f3
  509. 000007fe`fe56192c : 00000000`00000000 00000000`04e6f6c0 000007fe`fe729cf8 000007fe`fe587232 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  510. 000007fe`fe56199e : 000007fe`fe72a1e0 00000000`04e6f700 00000000`04e6f700 00000000`04e6ed70 : ole32!CApartmentActivator::CreateInstance+0x88
  511. 000007fe`fe586e83 : 00000000`04e6ef70 000007fe`fe72a1e0 00000000`00000000 00000000`00000000 : ole32!CProcessActivator::CCICallback+0x4e
  512. 000007fe`fe586e17 : 00000000`04e6f3e8 00000000`04e6f700 00000000`04e6e9b0 00000000`77348543 : ole32!CProcessActivator::AttemptActivation+0x33
  513. 000007fe`fe562567 : 000007fe`fe72a1e0 00000000`04e6f6c0 00000000`00000000 00000000`00000001 : ole32!CProcessActivator::ActivateByContext+0x7f
  514. 000007fe`fe56169a : 00000000`04e6ef70 00000000`04e6ec60 00000000`04e6ed70 00000000`04e6f6c0 : ole32!CProcessActivator::CreateInstance+0x77
  515. 000007fe`fe5617a7 : 00000000`04e6ea30 00000000`00000000 00000000`04e6ec60 00000000`00000000 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  516. 000007fe`fe56169a : 00000000`04e6ef70 00000000`04e6f6c0 00000000`00000000 00000000`00000000 : ole32!CClientContextActivator::CreateInstance+0xeb
  517. 000007fe`fe562090 : 00000000`00000001 00000000`04e6f670 00000000`04e6f8c0 00000000`00000001 : ole32!ActivationPropertiesIn::DelegateCreateInstance+0x5e
  518. 000007fe`fe57760b : 00000000`00000000 000007fe`fdd31332 00000000`00000003 00000000`00000068 : ole32!ICoCreateInstanceEx+0x5f5
  519. 000007fe`fb2e5b48 : 00000000`003e59e8 00000000`8007000e 00000000`003e5a00 00000000`00000004 : ole32!CoCreateInstance+0x17b
  520. 000007fe`f8e83fd8 : 00000000`003912d0 00000000`00000000 80010000`00000000 00000000`00000000 : fdwcn!CFDWCNProvider::Query+0x394
  521. 000007fe`f8e88847 : 00000000`003912d0 00000000`04e6fb30 00000000`00391150 000007fe`f8e81473 : FunDisc!CQueryWorker::Execute+0x2ab
  522. 000007fe`f8e83e3f : 00000000`00391150 00000000`04e6fc48 00000000`04e6fc01 000007fe`00000000 : FunDisc!CQueryWorker::Execute+0x43f
  523. 000007fe`fb2a3de7 : 00000000`00000000 000007fe`fb2a1a20 00000000`03f1c760 000007fe`fe572c8c : FunDisc!CFunctionInstanceCollectionQuery::Execute+0xe5
  524. 000007fe`fb2a4062 : 00000000`003e4800 00000000`003e5920 000007fe`fb2ad160 00000000`00000000 : NetworkItemFactory!CNetworkItemFactory::_StartFDQuery+0xcf
  525. 000007fe`fb2a4133 : 00000000`0038abc0 00000000`00000000 00000000`00000000 00000000`03f1c760 : NetworkItemFactory!CNetworkItemFactory::s_StartFDInMTA+0x96
  526. 000007fe`fdfcc71e : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : NetworkItemFactory!FDBackgroundThreadHandler+0x1f
  527. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : SHLWAPI!WrapperThreadProc+0x19b
  528. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  529. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  530. 0:015> g
  531. ModLoad: 000007fe`fb380000 000007fe`fb38b000 C:\Windows\system32\fdWNet.dll
  532. ModLoad: 000007fe`fa790000 000007fe`fa7b7000 C:\Windows\system32\IPHLPAPI.DLL
  533. ModLoad: 000007fe`fa740000 000007fe`fa74b000 C:\Windows\system32\WINNSI.DLL
  534. ModLoad: 000007fe`ed6e0000 000007fe`ed6f3000 C:\Windows\system32\dfscli.dll
  535. (558.20dc): Unknown exception - code 000006ba (first chance)
  536. Breakpoint 2 hit
  537. ntdll!ZwCreateThreadEx:
  538. 00000000`77371d90 4c8bd1 mov r10,rcx
  539. 0:008> kb
  540. RetAddr : Args to Child : Call Site
  541. 000007fe`fdac9c43 : 00000000`00000000 00000000`00000000 00000000`0000000d 00000000`00000000 : ntdll!ZwCreateThreadEx
  542. 00000000`76eb65b6 : 00000000`0409f050 000007fe`fdac2d10 000007fe`fddc1a80 000007fe`fdd329e7 : KERNELBASE!CreateRemoteThreadEx+0x163
  543. 000007fe`fdd373d2 : 00000000`00000000 00000000`00000000 000007fe`fb4140d0 00000000`00000000 : kernel32!CreateThreadStub+0x36
  544. 000007fe`fb412382 : 00000000`003e6320 00000000`0409f0d8 00000000`80000000 00000000`00000000 : msvcrt!beginthreadex+0xca
  545. 000007fe`fb4126f9 : 00000000`00000003 00000000`03d7f8f0 70dd8bac`8b6ec381 11da61ff`1fda955b : dtsh!CDetectionAndSharing::FinalConstruct+0xb2
  546. 000007fe`fb41257a : 00000000`00000003 00000000`0409f070 00000000`0409f2c0 000007fe`fe578aa9 : dtsh!ATL::CComCreator<ATL::CComObject<CDetectionAndSharing> >::CreateInstance+0xd1
  547. 000007fe`fb412296 : 00000000`0409f088 000007fe`f558ad80 00000000`00000000 00000000`0409f2c0 : dtsh!ATL::CComCreator2<ATL::CComCreator<ATL::CComObject<CDetectionAndSharing> >,ATL::CComFailCreator<-2147221232> >::CreateInstance+0xe
  548. 000007fe`fe5732a4 : 00000000`00000003 00000000`0409f2c0 00000000`00000001 000007fe`fe573152 : dtsh!ATL::CComClassFactory::CreateInstance+0x52
  549. 000007fe`fe57760b : 00000000`00000000 000007fe`fdac10dc 00000000`04090409 000007fe`fdac2d10 : ole32!ICoCreateInstanceEx+0x3db
  550. 000007fe`f55851d8 : 00000000`03f1d878 00000000`0409f420 00000000`0409f388 000007fe`f5583a81 : ole32!CoCreateInstance+0x17b
  551. 000007fe`f5583bae : 00000000`03f1c760 00000000`03f1c760 00000000`0409f448 000007fe`f55813ac : NetworkExplorer!CNetworkExplorerFolder::s_GetDtshState+0x38
  552. 000007fe`fe8d72ee : 00000000`03f1c760 00000000`00000000 00000000`0409f520 000007fe`fdfd11ff : NetworkExplorer!CNetworkExplorerFolder::EnumObjects+0x56
  553. 000007fe`f672c770 : ffffffff`fffffffe 00000000`76db62b2 80010000`02010000 00000000`00000000 : SHELL32!CRegFolder::EnumObjects+0x64
  554. 000007fe`f66fbe50 : 00000000`042f5d70 00000000`0429e270 00000000`00000000 00000000`00000000 : explorerframe!CNscEnumTask::InternalResumeRT+0x268
  555. 000007fe`fe93f0eb : 80000000`01000000 00000000`0409f650 00000000`042f5d70 00000000`0000000a : explorerframe!CRunnableTask::Run+0xda
  556. 000007fe`fe942c8a : 00000000`042f5d70 00000000`00000000 00000000`042f5d70 00000000`00000002 : SHELL32!CShellTask::TT_Run+0x124
  557. 000007fe`fe942de2 : 00000000`03f3f910 00000000`03f3f910 00000000`00000000 00000000`002b6968 : SHELL32!CShellTaskThread::ThreadProc+0x1d2
  558. 000007fe`fdfd3843 : 000007ff`fffaa000 00000000`0030b190 00000000`002fe970 00000000`002b6968 : SHELL32!CShellTaskThread::s_ThreadProc+0x22
  559. 00000000`773415ab : 00000000`036c2800 00000000`036c2800 00007744`f53de54b 00000000`00000002 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  560. 00000000`77340c26 : 00000000`00000000 00000000`03f3f930 00000000`002fe970 00000000`036c24b8 : ntdll!RtlpTpWorkCallback+0x16b
  561. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  562. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  563. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
  564. 0:008> g
  565. ModLoad: 000007fe`f81e0000 000007fe`f81f2000 C:\Windows\system32\browcli.dll
  566. ModLoad: 000007fe`fc960000 000007fe`fc967000 C:\Windows\System32\wshtcpip.dll
  567. ModLoad: 000007fe`fcfe0000 000007fe`fcfe7000 C:\Windows\System32\wship6.dll
  568. ModLoad: 000007fe`fce70000 000007fe`fcecb000 C:\Windows\system32\DNSAPI.dll
  569. ModLoad: 000007fe`f7d40000 000007fe`f7d6f000 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
  570. ModLoad: 000007fe`f7d30000 000007fe`f7d38000 C:\Windows\system32\rasadhlp.dll
  571. ModLoad: 000007fe`fa5d0000 000007fe`fa623000 C:\Windows\System32\fwpuclnt.dll
  572. ModLoad: 000007fe`fa480000 000007fe`fa498000 C:\Windows\system32\dhcpcsvc.DLL
  573. ModLoad: 000007fe`fa440000 000007fe`fa451000 C:\Windows\system32\dhcpcsvc6.DLL
  574. Breakpoint 2 hit
  575. ntdll!ZwCreateThreadEx:
  576. 00000000`77371d90 4c8bd1 mov r10,rcx
  577. 0:009> kb
  578. RetAddr : Args to Child : Call Site
  579. 000007fe`fdac9c43 : 00000000`003ec4f0 000007fe`f79e4b4a 00000000`003ec4f0 000007fe`fdc3a6d0 : ntdll!ZwCreateThreadEx
  580. 00000000`76eb65b6 : 000007fe`fc27fbe4 000007fe`e35a2f1b 00000000`00000000 00000000`03ea96a0 : KERNELBASE!CreateRemoteThreadEx+0x163
  581. 000007fe`e35ef99d : 00000000`04360810 000007fe`e367c3f8 00000000`00000000 00000000`00000000 : kernel32!CreateThreadStub+0x36
  582. 000007fe`e35efe6f : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : wpdshext!CDeviceCache::s_EnsureDeviceCache+0x1ed
  583. 000007fe`e35a4b0c : 00000000`00000000 00000000`04422ef0 000007fe`e367c3f8 00000000`00000000 : wpdshext!CDeviceCache::s_AddToCache+0x107
  584. 000007fe`e35a3629 : 00000000`043238e0 00000000`04359e40 00000000`00000001 00000000`0400f748 : wpdshext!CDeviceEnum::_Init+0x349
  585. 000007fe`fe9ead4b : 00000000`04359e40 00000000`00000000 00000000`044651d8 000007fe`fe8de413 : wpdshext!CDeviceEnum::Next+0x138
  586. 000007fe`fe8da885 : 00000000`80004005 000007fe`fe8e2a0a 00000000`00000000 00000000`00000000 : SHELL32!CRegFolderEnum::Next+0x225
  587. 000007fe`fe8da73a : 00000000`00000001 00000000`00000000 00000000`00000000 00000000`044651d0 : SHELL32!CEnumThread::_EnumFolder+0xef
  588. 000007fe`fe90c684 : 00000000`044651d0 00000000`044651d0 00000000`00000000 000007fe`fe904fcd : SHELL32!CEnumThread::InternalResumeRT+0xa6
  589. 000007fe`fe93f0eb : 80000000`01000000 00000000`0400f8a0 00000000`044075e0 00000000`0000000b : SHELL32!CRunnableTask::Run+0xda
  590. 000007fe`fe942c8a : 00000000`044075e0 00000000`00000000 00000000`044075e0 00000000`00000002 : SHELL32!CShellTask::TT_Run+0x124
  591. 000007fe`fe942de2 : 00000000`042c9bb0 00000000`042c9bb0 00000000`00000000 00000000`002cd288 : SHELL32!CShellTaskThread::ThreadProc+0x1d2
  592. 000007fe`fdfd3843 : 000007ff`fffa6000 00000000`0030b190 00000000`002fe970 00000000`002cd288 : SHELL32!CShellTaskThread::s_ThreadProc+0x22
  593. 00000000`773415ab : 00000000`03f28220 00000000`03f28220 00000000`0030b190 00000000`00000003 : SHLWAPI!ExecuteWorkItemThreadProc+0xf
  594. 00000000`77340c26 : 00000000`00000000 00000000`042c9b90 00000000`002fe970 00000000`036c26f8 : ntdll!RtlpTpWorkCallback+0x16b
  595. 00000000`76eb652d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x5ff
  596. 00000000`7734c521 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
  597. 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!