dumped time: 2020/6/2
game: apex legends

EAC Dym Import name:CmRegisterCallback ptr:FFFFF800184F8A10
EAC Dym Import name:CmRegisterCallbackEx ptr:FFFFF80018596A30
EAC Dym Import name:CmUnRegisterCallback ptr:FFFFF80018596CA0
EAC Dym Import name:ExRaiseHardError ptr:FFFFF8001866E970
EAC Dym Import name:IoBuildDeviceIoControlRequest ptr:FFFFF80017FD2370
EAC Dym Import name:IoCreateFile ptr:FFFFF80018399E20
EAC Dym Import name:IoEnumerateDeviceObjectList ptr:FFFFF8001800BB40
EAC Dym Import name:IoGetDeviceInterfaces ptr:FFFFF80018338AC0
EAC Dym Import name:IoGetDeviceObjectPointer ptr:FFFFF8001833EF50
EAC Dym Import name:KeStackAttachProcess ptr:FFFFF80017EAFA90
EAC Dym Import name:KeUnstackDetachProcess ptr:FFFFF80017F5E220
EAC Dym Import name:KeQueryActiveProcessorCount ptr:FFFFF800180E9590
EAC Dym Import name:KeSetSystemAffinityThreadEx ptr:FFFFF8001802EB00
EAC Dym Import name:KeRevertToUserAffinityThreadEx ptr:FFFFF800180E7D10
EAC Dym Import name:KeWaitForSingleObject ptr:FFFFF80017F9D8D0
EAC Dym Import name:KeAreAllApcsDisabled ptr:FFFFF80017F98880
EAC Dym Import name:MmGetPhysicalAddress ptr:FFFFF80017EE43D0
EAC Dym Import name:MmIsAddressValid ptr:FFFFF800180FE0B0
EAC Dym Import name:MmMapVideoDisplay ptr:FFFFF80017FE1D60
EAC Dym Import name:MmMapIoSpaceEx ptr:FFFFF80017FE1DA0
EAC Dym Import name:MmUnmapVideoDisplay ptr:FFFFF80017FE4EE0
EAC Dym Import name:MmGetPhysicalMemoryRanges ptr:FFFFF800184F52A0
EAC Dym Import name:MmGetVirtualForPhysical ptr:FFFFF800180FC780
EAC Dym Import name:ObDereferenceObjectDeferDelete ptr:FFFFF80017FA1DD0
EAC Dym Import name:ObfReferenceObject ptr:FFFFF80017FAB690
EAC Dym Import name:ObReferenceObjectByHandle ptr:FFFFF8001844C470
EAC Dym Import name:ObReferenceObjectByName ptr:FFFFF8001837ADE0
EAC Dym Import name:ObReferenceObjectByPointer ptr:FFFFF80017F1B920
EAC Dym Import name:ObGetObjectType ptr:FFFFF8001841BF00
EAC Dym Import name:ObIsKernelHandle ptr:FFFFF80017FF5570
EAC Dym Import name:ObOpenObjectByName ptr:FFFFF800183FF650
EAC Dym Import name:ObOpenObjectByPointer ptr:FFFFF80018442530
EAC Dym Import name:ObQueryNameString ptr:FFFFF8001841C690
EAC Dym Import name:ObRegisterCallbacks ptr:FFFFF800184F47F0
EAC Dym Import name:ObUnRegisterCallbacks ptr:FFFFF80018602F60
EAC Dym Import name:PsSetCreateProcessNotifyRoutine ptr:FFFFF800184CF9F0
EAC Dym Import name:PsSetCreateThreadNotifyRoutine ptr:FFFFF800184CF7D0
EAC Dym Import name:PsSetLoadImageNotifyRoutine ptr:FFFFF800184CF7F0
EAC Dym Import name:PsRemoveCreateThreadNotifyRoutine ptr:FFFFF800186272D0
EAC Dym Import name:PsRemoveLoadImageNotifyRoutine ptr:FFFFF800186273D0
EAC Dym Import name:PsAcquireProcessExitSynchronization ptr:FFFFF80018409340
EAC Dym Import name:PsGetCurrentProcess ptr:FFFFF80017F0A7B0
EAC Dym Import name:PsGetCurrentThreadProcessId ptr:FFFFF80017F49940
EAC Dym Import name:PsGetProcessCreateTimeQuadPart ptr:FFFFF80017F630B0
EAC Dym Import name:PsGetProcessDebugPort ptr:FFFFF80017F743C0
EAC Dym Import name:PsGetProcessExitProcessCalled ptr:FFFFF80017F77B70
EAC Dym Import name:PsGetProcessExitStatus ptr:FFFFF800186231D0
EAC Dym Import name:PsGetProcessId ptr:FFFFF80017F16CF0
EAC Dym Import name:PsGetProcessImageFileName ptr:FFFFF80017F68E90
EAC Dym Import name:PsGetProcessInheritedFromUniqueProcessId ptr:FFFFF80017F08450
EAC Dym Import name:PsGetProcessPeb ptr:FFFFF80017F67CF0
EAC Dym Import name:PsGetProcessSectionBaseAddress ptr:FFFFF80017F14E70
EAC Dym Import name:PsGetProcessWow64Process ptr:FFFFF80017F52DB0
EAC Dym Import name:PsIsProcessBeingDebugged ptr:FFFFF800186231E0
EAC Dym Import name:PsIsProtectedProcess ptr:FFFFF80017F14EE0
EAC Dym Import name:PsIsProtectedProcessLight ptr:FFFFF80017F12050
EAC Dym Import name:PsLookupProcessByProcessId ptr:FFFFF80018442700
EAC Dym Import name:PsReferencePrimaryToken ptr:FFFFF80018369A70
EAC Dym Import name:PsDereferencePrimaryToken ptr:FFFFF80018421C40
EAC Dym Import name:PsReferenceProcessFilePointer ptr:FFFFF8001840A8A0
EAC Dym Import name:PsReleaseProcessExitSynchronization ptr:FFFFF8001840D6D0
EAC Dym Import name:PsSuspendProcess ptr:FFFFF80018627710
EAC Dym Import name:PsResumeProcess ptr:FFFFF8001840F940
EAC Dym Import name:PsLookupProcessThreadByCid ptr:FFFFF800183816B0
EAC Dym Import name:PsLookupThreadByThreadId ptr:FFFFF8001837F9F0
EAC Dym Import name:PsGetCurrentThreadTeb ptr:FFFFF80017F69210
EAC Dym Import name:PsIsSystemThread ptr:FFFFF80017F65DE0
EAC Dym Import name:PsSetThreadHardErrorsAreDisabled ptr:FFFFF8001800BCE0
EAC Dym Import name:RtlConvertSidToUnicodeString ptr:FFFFF800183C0930
EAC Dym Import name:SeQueryInformationToken ptr:FFFFF80018455B40
EAC Dym Import name:SeRegisterImageVerificationCallback ptr:FFFFF800184FCB80
EAC Dym Import name:SeUnregisterImageVerificationCallback ptr:FFFFF80018635540
EAC Dym Import name:NtDeviceIoControlFile ptr:FFFFF80018447780
EAC Dym Import name:NtClose ptr:FFFFF8001844A3A0
EAC Dym Import name:ZwOpenDirectoryObject ptr:FFFFF8001804FCA0
EAC Dym Import name:ZwQueryDirectoryObject ptr:FFFFF80018051900
EAC Dym Import name:NtDuplicateObject ptr:FFFFF8001835F300
EAC Dym Import name:NtQueryInformationToken ptr:FFFFF8001843F5D0
EAC Dym Import name:ZwQueryObject ptr:FFFFF8001804F3A0
EAC Dym Import name:ZwSetInformationObject ptr:FFFFF8001804FD20
EAC Dym Import name:NtSetInformationProcess ptr:FFFFF8001838D240
EAC Dym Import name:NtAllocateVirtualMemory ptr:FFFFF8001845BC50
EAC Dym Import name:ZwFlushInstructionCache ptr:FFFFF80018050DC0
EAC Dym Import name:NtFreeVirtualMemory ptr:FFFFF80018355C50
EAC Dym Import Failed!
EAC Dym Import name:ZwFlushVirtualMemory ptr:FFFFF80018050E20
EAC Dym Import name:NtSetInformationVirtualMemory ptr:FFFFF8001835B870
EAC Dym Import name:NtQueryInformationProcess ptr:FFFFF800183A2130
EAC Dym Import name:NtQuerySystemInformation ptr:FFFFF80018456450
EAC Dym Import name:NtQueryInformationThread ptr:FFFFF80018377890
EAC Dym Import name:NtSetInformationThread ptr:FFFFF80018442FB0
EAC Dym Import name:ZwQueryLicenseValue ptr:FFFFF80018051B00
EAC Dym Import name:ZwTerminateProcess ptr:FFFFF8001804F720
EAC Dym Import name:ZwProtectVirtualMemory ptr:FFFFF8001804FBA0
EAC Dym Import name:ExAllocatePoolWithTag ptr:FFFFF80018192DB0
EAC Dym Import name:ExFreePoolWithTag ptr:FFFFF80018192410
EAC Dym Import name:ZwQuerySection ptr:FFFFF8001804FBC0
EAC Dym Import name:ZwQuerySection ptr:FFFFF8001804FBC0
EAC Dym Import name:ZwQueryVirtualMemory ptr:FFFFF8001804F600
EAC Dym Import name:PsGetThreadProcess ptr:FFFFF80017F08570
EAC Dym Import name:ExGetPreviousMode ptr:FFFFF80017EADF90
EAC Dym Import name:RtlUTF8ToUnicodeN ptr:FFFFF8001841F260
EAC Dym Import name:IoWMIOpenBlock ptr:FFFFF8001847CE30
EAC Dym Import name:IoWMIQueryAllData ptr:FFFFF800184F8C50
EAC Dym Import name:RtlCreateUserThread ptr:FFFFF8001862AAF0
EAC Dym Import name:PsCreateSystemThread ptr:FFFFF800183D38A0
EAC Dym Import name:PsTerminateSystemThread ptr:FFFFF8001842A4B0
EAC Dym Import name:PsProcessType ptr:FFFFF800182F5250
EAC Dym Import name:MmGetSystemRoutineAddress ptr:FFFFF800183C2BC0
EAC Dym Import name:ZwDeleteKey ptr:FFFFF80018050B40
EAC Dym Import name:IoDriverObjectType ptr:FFFFF800182F5398
EAC Dym Import name:PsGetThreadProcessId ptr:FFFFF80017F6AD60
EAC Dym Import name:RtlVirtualUnwind ptr:FFFFF80017F77CA0
EAC Dym Import name:RtlLookupFunctionEntry ptr:FFFFF80017FD6820
EAC Dym Import name:MmCopyMemory ptr:FFFFF80018002FE0
EAC Dym Import name:KeAlertThread ptr:FFFFF80017EEBDB0
EAC Dym Import name:IoGetInitialStack ptr:FFFFF800185C54E0
EAC Dym Import name:PsGetCurrentThreadStackBase ptr:FFFFF8001812BEB0
EAC Dym Import name:PsGetCurrentThreadStackLimit ptr:FFFFF8001812BED0
EAC Dym Import name:KeSetPriorityThread ptr:FFFFF80017F925A0
EAC Dym Import name:RtlTimeToSecondsSince1970 ptr:FFFFF8001812DE20
EAC Dym Import name:PsCreateSystemThread ptr:FFFFF800183D38A0
EAC Dym Import name:ZwQueryVirtualMemory ptr:FFFFF8001804F600
EAC Dym Import name:KdDebuggerNotPresent ptr:FFFFF8001826D781
EAC Dym Import name:PsGetProcessId ptr:FFFFF80017F16CF0
EAC Dym Import name:PsIsThreadTerminating ptr:FFFFF80017EE8C30
EAC Dym Import name:KeInitializeApc ptr:FFFFF80017FDA6A0
EAC Dym Import name:KeInsertQueueApc ptr:FFFFF80017EECAB0
EAC Dym Import name:KeAlertThread ptr:FFFFF80017EEBDB0
EAC Dym Import name:KeTestAlertThread ptr:FFFFF80017FDA2B0
EAC Dym Import name:PsWrapApcWow64Thread ptr:FFFFF8001812CC80
EAC Dym Import Failed!
EAC Dym Import Failed!
EAC Dym Import Failed!
EAC Dym Import Failed!
EAC Dym Import Failed!
EAC Dym Import Failed!
EAC Dym Import Failed!
EAC Dym Import Failed!
EAC Dym Import name:ZwQueryVirtualMemory ptr:FFFFF8001804F600

发表回复

您的电子邮箱地址不会被公开。 必填项已用*标注

此站点使用Akismet来减少垃圾评论。了解我们如何处理您的评论数据