__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2679896
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2685184
registers.r11:
1
registers.r8:
64
registers.r9:
3170528
registers.rdx:
2681240
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2679576
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1303544
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1308832
registers.r11:
1
registers.r8:
64
registers.r9:
3694816
registers.rdx:
1304888
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1303224
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1959448
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1964736
registers.r11:
1
registers.r8:
64
registers.r9:
3039456
registers.rdx:
1960792
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1959128
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1501960
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1507248
registers.r11:
1
registers.r8:
64
registers.r9:
4219104
registers.rdx:
1503304
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1501640
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2287368
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2292656
registers.r11:
1
registers.r8:
64
registers.r9:
4481248
registers.rdx:
2288712
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2287048
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1173240
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1178528
registers.r11:
1
registers.r8:
64
registers.r9:
5005536
registers.rdx:
1174584
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1172920
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1435080
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1440368
registers.r11:
1
registers.r8:
64
registers.r9:
5333216
registers.rdx:
1436424
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1434760
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2745784
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2751072
registers.r11:
1
registers.r8:
64
registers.r9:
7430368
registers.rdx:
2747128
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2745464
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1436040
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1441328
registers.r11:
1
registers.r8:
64
registers.r9:
2318560
registers.rdx:
1437384
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1435720
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1369832
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1375120
registers.r11:
1
registers.r8:
64
registers.r9:
155872
registers.rdx:
1371176
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1369512
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2615048
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2620336
registers.r11:
1
registers.r8:
64
registers.r9:
4153568
registers.rdx:
2616392
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2614728
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1174152
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1179440
registers.r11:
1
registers.r8:
64
registers.r9:
2253024
registers.rdx:
1175496
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1173832
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1238168
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1243456
registers.r11:
1
registers.r8:
64
registers.r9:
5267680
registers.rdx:
1239512
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1237848
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1828776
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1834064
registers.r11:
1
registers.r8:
64
registers.r9:
2842848
registers.rdx:
1830120
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1828456
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2679992
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2685280
registers.r11:
1
registers.r8:
64
registers.r9:
7233760
registers.rdx:
2681336
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2679672
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1566712
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1572000
registers.r11:
1
registers.r8:
64
registers.r9:
5333216
registers.rdx:
1568056
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1566392
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1041992
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1047280
registers.r11:
1
registers.r8:
64
registers.r9:
3498208
registers.rdx:
1043336
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1041672
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1960200
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1965488
registers.r11:
1
registers.r8:
64
registers.r9:
2384096
registers.rdx:
1961544
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1959880
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
975848
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
981136
registers.r11:
1
registers.r8:
64
registers.r9:
4481248
registers.rdx:
977192
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
975528
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1697432
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1702720
registers.r11:
1
registers.r8:
64
registers.r9:
2056416
registers.rdx:
1698776
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1697112
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2287896
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2293184
registers.r11:
1
registers.r8:
64
registers.r9:
1204448
registers.rdx:
2289240
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2287576
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1631800
registers.rsi:
0
registers.r10:
226
registers.rbx:
0
registers.rsp:
1637088
registers.r11:
1
registers.r8:
64
registers.r9:
5668496
registers.rdx:
1633144
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1631480
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1958904
registers.rsi:
0
registers.r10:
226
registers.rbx:
0
registers.rsp:
1964192
registers.r11:
1
registers.r8:
64
registers.r9:
5734032
registers.rdx:
1960248
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1958584
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2549032
registers.rsi:
0
registers.r10:
226
registers.rbx:
0
registers.rsp:
2554320
registers.r11:
1
registers.r8:
64
registers.r9:
5996176
registers.rdx:
2550376
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2548712
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
977368
registers.rsi:
0
registers.r10:
226
registers.rbx:
0
registers.rsp:
982656
registers.r11:
1
registers.r8:
64
registers.r9:
6586000
registers.rdx:
978712
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
977048
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2156648
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2161936
registers.r11:
1
registers.r8:
64
registers.r9:
5071072
registers.rdx:
2157992
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2156328
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
714600
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
719888
registers.r11:
1
registers.r8:
64
registers.r9:
2121952
registers.rdx:
715944
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
714280
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
910664
registers.rsi:
0
registers.r10:
226
registers.rbx:
0
registers.rsp:
915952
registers.r11:
1
registers.r8:
64
registers.r9:
4947600
registers.rdx:
912008
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
910344
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2156488
registers.rsi:
0
registers.r10:
226
registers.rbx:
0
registers.rsp:
2161776
registers.r11:
1
registers.r8:
64
registers.r9:
5930640
registers.rdx:
2157832
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2156168
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1434936
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1440224
registers.r11:
1
registers.r8:
64
registers.r9:
5071072
registers.rdx:
1436280
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1434616
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1106824
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1112112
registers.r11:
1
registers.r8:
64
registers.r9:
5464288
registers.rdx:
1108168
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1106504
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1435544
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1440832
registers.r11:
1
registers.r8:
64
registers.r9:
5202144
registers.rdx:
1436888
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1435224
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1697240
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1702528
registers.r11:
1
registers.r8:
64
registers.r9:
5529824
registers.rdx:
1698584
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1696920
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
911208
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
916496
registers.r11:
1
registers.r8:
64
registers.r9:
7168224
registers.rdx:
912552
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
910888
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1435400
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1440688
registers.r11:
1
registers.r8:
64
registers.r9:
6512864
registers.rdx:
1436744
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1435080
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2614728
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2620016
registers.r11:
1
registers.r8:
64
registers.r9:
8806624
registers.rdx:
2616072
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2614408
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1239688
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1244976
registers.r11:
1
registers.r8:
64
registers.r9:
6643936
registers.rdx:
1241032
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1239368
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
715384
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
720672
registers.r11:
1
registers.r8:
64
registers.r9:
3563744
registers.rdx:
716728
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
715064
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1173768
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1179056
registers.r11:
1
registers.r8:
64
registers.r9:
6381792
registers.rdx:
1175112
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1173448
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
977464
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
982752
registers.r11:
1
registers.r8:
64
registers.r9:
5529824
registers.rdx:
978808
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
977144
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
911128
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
916416
registers.r11:
1
registers.r8:
64
registers.r9:
4940000
registers.rdx:
912472
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
910808
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2091352
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2096640
registers.r11:
1
registers.r8:
64
registers.r9:
1204448
registers.rdx:
2092696
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2091032
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2483656
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2488944
registers.r11:
1
registers.r8:
64
registers.r9:
1794272
registers.rdx:
2485000
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2483336
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1829400
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1834688
registers.r11:
1
registers.r8:
64
registers.r9:
4677856
registers.rdx:
1830744
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1829080
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2417960
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2423248
registers.r11:
1
registers.r8:
64
registers.r9:
1466592
registers.rdx:
2419304
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2417640
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2286936
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2292224
registers.r11:
1
registers.r8:
64
registers.r9:
6906080
registers.rdx:
2288280
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2286616
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1696824
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1702112
registers.r11:
1
registers.r8:
64
registers.r9:
1794272
registers.rdx:
1698168
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1696504
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
781080
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
786368
registers.r11:
1
registers.r8:
64
registers.r9:
5267680
registers.rdx:
782424
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
780760
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
1108584
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
1113872
registers.r11:
1
registers.r8:
64
registers.r9:
5464288
registers.rdx:
1109928
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
1108264
registers.r13:
0
|
1
|
0 |
0
|
__exception__
|
stacktrace:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895 @ 0x77210895
stacktrace+0x84 memdup-0x1af @ 0x74420470
hook_in_monitor+0x45 lde-0x133 @ 0x744142ea
New_kernel32_CreateThread+0x29 New_kernel32_CreateToolhelp32Snapshot-0x136 @ 0x7442a013
_beginthread+0xab _vcprintf_l-0x12e5 msvcrt+0x4c4db @ 0x7fefdadc4db
flviyhl+0xb10 _cgo_dummy_export-0xfa180 gt2pfbb+0x729a0 @ 0x7fef19f29a0
StartW-0xfda2 gt2pfbb+0x608be @ 0x7fef19e08be
flviyhl+0x6f79 _cgo_dummy_export-0xf3d17 gt2pfbb+0x78e09 @ 0x7fef19f8e09
flviyhl+0x5d72 _cgo_dummy_export-0xf4f1e gt2pfbb+0x77c02 @ 0x7fef19f7c02
StartW-0x6f39f gt2pfbb+0x12c1 @ 0x7fef19812c1
TpAllocTimer+0xb08 RtlInitializeCriticalSectionEx-0x318 ntdll+0x3b0d8 @ 0x771fb0d8
RtlCreateUnicodeStringFromAsciiz+0xea LdrLoadDll-0x246 ntdll+0x2784a @ 0x771e784a
LdrLoadDll+0x9e RtlOpenCurrentUser-0x442 ntdll+0x27b2e @ 0x771e7b2e
New_ntdll_LdrLoadDll+0xaf New_ntdll_LdrUnloadDll-0xd9 @ 0x7442f9f8
LoadLibraryExW+0x19c FreeSid-0xa4 kernelbase+0xa05c @ 0x7fefd6da05c
rundll32+0x2b50 @ 0xff222b50
rundll32+0x2e6a @ 0xff222e6a
rundll32+0x3b7a @ 0xff223b7a
BaseThreadInitThunk+0xd CreateThread-0x53 kernel32+0x1652d @ 0x76e5652d
RtlUserThreadStart+0x21 strchr-0x3df ntdll+0x2c521 @ 0x771ec521
exception.instruction_r:
0f ae 81 00 01 00 00 0f 29 81 a0 01 00 00 0f 29
exception.symbol:
RtlCaptureContext+0x85 RtlRestoreContext-0xaa ntdll+0x50895
exception.address:
0x77210895
exception.module:
ntdll.dll
exception.exception_code:
0xc0000005
exception.offset:
329877
registers.r14:
0
registers.r15:
0
registers.rcx:
2745304
registers.rsi:
0
registers.r10:
158
registers.rbx:
0
registers.rsp:
2750592
registers.r11:
1
registers.r8:
64
registers.r9:
5071072
registers.rdx:
2746648
registers.r12:
0
registers.rbp:
0
registers.rdi:
0
registers.rax:
2744984
registers.r13:
0
|
1
|
0 |
0
|