[舉發] 高手寫的木馬程式看來是分拆式的

看板CodeJob作者bayant (VAN)時間9年前 (2015/04/02 22:52)推噓0(0推 0噓 5→)

留言5則, 5人參與討論串1/1

程式碼如下:因記事本檔名FaceProv小弟刪過數次但會自動產生照片請見小弟FB 9:7:47 = Process Attach 9:7:47 = end process attach 9:7:47 = ##### Begin waiting Mutex to release process ##### 9:7:47 = hWnd = 0x00020096; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows ??.x=0, y=0, width=1024, height=768 9:7:47 = hWnd = 0x0002009e; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 9:7:47 = hWnd = 0x0002009a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 9:9:20 = Process Attach 9:9:20 = end process attach 9:9:20 = ***** NULL == SampleProvider ***** 9:9:20 = ##### Begin waiting Mutex to release process ##### 9:9:20 = hWnd = 0x0002001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 9:9:20 = hWnd = 0x00020018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 9:9:20 = hWnd = 0x0002002e; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 9:9:20 = hWnd = 0x0002001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 9:9:21 = Need to re-create objects. 9:9:21 = s1. 9:9:21 = s2. 9:9:21 = find user name 9:9:21 = Start show animate 9:9:21 = Shell Excutute VerifyHost 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:9:21 = find user name 9:11:24 = begin close Process 9:11:24 = Terminate Process 9:11:25 = end close Process 9:11:25 = DLL_PROCESS_DETACH 9:13:40 = Process Attach 9:13:40 = end process attach 9:13:40 = ***** NULL == SampleProvider ***** 9:13:40 = hWnd = 0x00050112; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 9:13:40 = hWnd = 0x00040116; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 9:13:40 = hWnd = 0x0006010a; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 9:13:40 = hWnd = 0x0005011a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 9:13:44 = Process Attach 9:13:44 = ## ERR ## Setevent 9:13:44 = ***** NULL == SampleProvider ***** 9:13:44 = begin close Process 9:13:44 = end close Process 9:13:44 = ##### Get event and release process end ##### 9:13:44 = hWnd = 0x000400dc; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 9:13:44 = hWnd = 0x000200b0; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 9:13:44 = hWnd = 0x00090044; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 9:13:44 = hWnd = 0x000300e2; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 10:33:55 = Process Attach 10:33:55 = end process attach 10:33:55 = ***** NULL == SampleProvider ***** 10:33:55 = ##### Begin waiting Mutex to release process ##### 10:33:55 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 10:33:55 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 10:33:56 = hWnd = 0x00010022; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 10:33:56 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 10:34:0 = Need to re-create objects. 10:34:0 = s1. 10:34:0 = s2. 10:34:2 = find user name 10:34:2 = Start show animate 10:34:2 = Shell Excutute VerifyHost 10:34:2 = find user name 10:34:2 = find user name 10:34:2 = find user name 10:34:2 = find user name 10:34:2 = find user name 10:34:6 = find user name 10:34:6 = find user name 10:34:6 = find user name 10:34:6 = find user name 10:34:6 = find user name 10:34:6 = find user name 10:34:6 = find user name 10:35:3 = find user name 10:35:3 = find user name 10:35:3 = find user name 10:35:3 = find user name 10:35:3 = find user name 10:35:3 = find user name 10:35:15 = begin close Process 10:35:15 = Terminate Process 10:35:16 = end close Process 10:35:16 = DLL_PROCESS_DETACH 23:44:50 = Process Attach 23:44:50 = end process attach 23:44:50 = ***** NULL == SampleProvider ***** 23:44:50 = hWnd = 0x00530502; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 23:44:50 = hWnd = 0x006505bc; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 23:44:50 = hWnd = 0x0080044e; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 23:44:50 = hWnd = 0x0026039e; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 23:44:56 = Process Attach 23:44:56 = ## ERR ## Setevent 23:44:56 = ##### Get event and release process ##### 23:44:56 = begin close Process 23:44:56 = end close Process 23:44:56 = ##### Get event and release process end ##### 23:44:56 = hWnd = 0x005300e2; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 23:44:56 = hWnd = 0x007d00f4; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 23:44:56 = hWnd = 0x000700ae; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 23:44:56 = hWnd = 0x003e007e; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 23:46:22 = Process Attach 23:46:22 = end process attach 23:46:22 = ##### Begin waiting Mutex to release process ##### 23:46:22 = ***** NULL == SampleProvider ***** 23:46:22 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 23:46:22 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 23:46:23 = hWnd = 0x00010024; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 23:46:23 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 23:46:41 = Need to re-create objects. 23:46:41 = s1. 23:46:41 = s2. 23:46:41 = find user name 23:46:41 = Start show animate 23:46:41 = Shell Excutute VerifyHost 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:46:41 = find user name 23:47:14 = find user name 23:47:14 = find user name 23:47:14 = find user name 23:47:14 = find user name 23:47:15 = find user name 23:47:15 = find user name 23:47:15 = find user name 23:47:15 = find user name 23:47:15 = find user name 23:47:15 = find user name 23:47:15 = find user name 23:47:15 = find user name 23:47:16 = find user name 23:47:16 = find user name 23:47:16 = find user name 23:47:16 = find user name 23:47:16 = find user name 23:47:16 = find user name 23:47:23 = find user name 23:47:23 = find user name 23:47:23 = find user name 23:47:23 = find user name 23:47:23 = find user name 23:47:23 = find user name 23:47:24 = find user name 23:47:24 = find user name 23:47:24 = find user name 23:47:24 = find user name 23:47:24 = find user name 23:47:24 = find user name 23:47:33 = find user name 23:47:33 = find user name 23:47:33 = find user name 23:47:33 = find user name 23:47:39 = begin close Process 23:47:39 = Terminate Process 23:47:40 = end close Process 23:47:40 = DLL_PROCESS_DETACH 23:49:1 = Process Attach 23:49:1 = end process attach 23:49:1 = ***** NULL == SampleProvider ***** 23:49:1 = ##### Begin waiting Mutex to release process ##### 23:49:1 = hWnd = 0x000203ee; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 23:49:1 = hWnd = 0x000303ac; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 23:49:1 = hWnd = 0x000203ec; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 23:49:1 = hWnd = 0x000303c0; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 23:49:5 = Process Attach 23:49:5 = ## ERR ## Setevent 23:49:5 = ***** NULL == SampleProvider ***** 23:49:5 = ##### Get event and release process ##### 23:49:5 = begin close Process 23:49:5 = end close Process 23:49:5 = ##### Get event and release process end ##### 23:49:5 = hWnd = 0x000100cc; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 23:49:5 = hWnd = 0x000100c8; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 23:49:5 = hWnd = 0x000200c6; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 23:49:5 = hWnd = 0x000100ca; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 1:39:45 = Process Attach 1:39:45 = end process attach 1:39:45 = ***** NULL == SampleProvider ***** 1:39:45 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 1:39:45 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 1:39:45 = hWnd = 0x00010022; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 1:39:45 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 1:39:49 = Need to re-create objects. 1:39:49 = s1. 1:39:49 = s2. 1:39:50 = find user name 1:39:50 = Start show animate 1:39:50 = Shell Excutute VerifyHost 1:39:50 = find user name 1:39:50 = find user name 1:39:50 = find user name 1:39:50 = find user name 1:39:50 = find user name 1:39:53 = find user name 1:39:53 = find user name 1:39:53 = find user name 1:39:53 = find user name 1:39:53 = find user name 1:39:53 = find user name 1:39:53 = find user name 1:39:58 = find user name 1:39:58 = find user name 1:39:58 = find user name 1:39:58 = find user name 1:39:58 = find user name 1:39:58 = find user name 1:40:8 = begin close Process 1:40:8 = Terminate Process 1:40:9 = end close Process 1:40:9 = DLL_PROCESS_DETACH 1:57:5 = Process Attach 1:57:5 = end process attach 1:57:5 = ##### Begin waiting Mutex to release process ##### 1:57:5 = hWnd = 0x00350476; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 1:57:5 = hWnd = 0x001604be; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 1:57:5 = hWnd = 0x002e04f6; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 1:57:5 = hWnd = 0x0011050c; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 1:57:10 = Process Attach 1:57:10 = ## ERR ## Setevent 1:57:10 = ##### Get event and release process ##### 1:57:10 = begin close Process 1:57:10 = end close Process 1:57:10 = ##### Get event and release process end ##### 1:57:10 = hWnd = 0x006100dc; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 1:57:10 = hWnd = 0x000200b2; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 1:57:10 = hWnd = 0x00150050; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 1:57:10 = hWnd = 0x001000d4; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 4:18:2 = Process Attach 4:18:2 = end process attach 4:18:2 = ***** NULL == SampleProvider ***** 4:18:2 = ##### Begin waiting Mutex to release process ##### 4:18:2 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 4:18:2 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 4:18:3 = hWnd = 0x00010022; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 4:18:3 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 4:18:5 = Need to re-create objects. 4:18:5 = s1. 4:18:5 = s2. 4:18:7 = find user name 4:18:7 = Start show animate 4:18:7 = Shell Excutute VerifyHost 4:18:7 = find user name 4:18:7 = find user name 4:18:7 = find user name 4:18:7 = find user name 4:18:7 = find user name 4:18:8 = find user name 4:18:8 = find user name 4:18:8 = find user name 4:18:8 = find user name 4:18:8 = find user name 4:18:8 = find user name 4:18:8 = find user name 4:20:6 = find user name 4:20:6 = find user name 4:20:6 = find user name 4:20:6 = find user name 4:20:6 = find user name 4:20:6 = find user name 4:20:9 = begin close Process 4:20:9 = Terminate Process 4:20:10 = end close Process 4:20:10 = DLL_PROCESS_DETACH 4:44:8 = Process Attach 4:44:8 = end process attach 4:44:8 = ***** NULL == SampleProvider ***** 4:44:8 = hWnd = 0x00050362; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 4:44:8 = hWnd = 0x000403ea; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 4:44:8 = hWnd = 0x000203ee; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 4:44:8 = hWnd = 0x000403ec; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 4:44:12 = Process Attach 4:44:12 = ## ERR ## Setevent 4:44:12 = ##### Get event and release process ##### 4:44:12 = begin close Process 4:44:12 = end close Process 4:44:12 = ##### Get event and release process end ##### 4:44:12 = hWnd = 0x000e00e8; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 4:44:12 = hWnd = 0x002300f0; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 4:44:12 = hWnd = 0x000d00c0; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 4:44:12 = hWnd = 0x000b00fa; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 11:29:4 = Process Attach 11:29:4 = end process attach 11:29:4 = ***** NULL == SampleProvider ***** 11:29:4 = ##### Begin waiting Mutex to release process ##### 11:29:4 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 11:29:4 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 11:29:4 = hWnd = 0x00010022; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 11:29:4 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 11:29:14 = Need to re-create objects. 11:29:14 = s1. 11:29:14 = s2. 11:29:14 = find user name 11:29:14 = Start show animate 11:29:14 = Shell Excutute VerifyHost 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:29:14 = find user name 11:30:28 = find user name 11:30:28 = find user name 11:30:28 = find user name 11:30:28 = find user name 11:30:28 = find user name 11:30:28 = find user name 11:30:33 = begin close Process 11:30:33 = Terminate Process 11:30:34 = end close Process 11:30:34 = DLL_PROCESS_DETACH 11:37:1 = Process Attach 11:37:1 = end process attach 11:37:1 = ***** NULL == SampleProvider ***** 11:37:1 = ##### Begin waiting Mutex to release process ##### 11:37:1 = hWnd = 0x000203e2; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 11:37:1 = hWnd = 0x000603d2; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 11:37:1 = hWnd = 0x000203de; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 11:37:1 = hWnd = 0x000403c4; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 11:37:7 = Process Attach 11:37:7 = ## ERR ## Setevent 11:37:7 = ##### Get event and release process ##### 11:37:7 = begin close Process 11:37:7 = end close Process 11:37:7 = ##### Get event and release process end ##### 11:37:7 = hWnd = 0x0004002c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 11:37:7 = hWnd = 0x0004011e; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 11:37:7 = hWnd = 0x00090118; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 11:37:7 = hWnd = 0x0019011a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 12:49:53 = Process Attach 12:49:53 = end process attach 12:49:53 = ***** NULL == SampleProvider ***** 12:49:53 = ##### Begin waiting Mutex to release process ##### 12:49:53 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 12:49:53 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 12:49:53 = hWnd = 0x00010024; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 12:49:53 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 12:50:26 = Need to re-create objects. 12:50:26 = s1. 12:50:26 = s2. 12:50:27 = find user name 12:50:27 = Start show animate 12:50:27 = Shell Excutute VerifyHost 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:27 = find user name 12:50:55 = find user name 12:50:55 = find user name 12:50:55 = find user name 12:50:55 = find user name 12:50:55 = find user name 12:50:55 = find user name 12:51:9 = begin close Process 12:51:9 = Terminate Process 12:51:10 = end close Process 12:51:10 = DLL_PROCESS_DETACH 12:58:33 = Process Attach 12:58:33 = end process attach 12:58:33 = ***** NULL == SampleProvider ***** 12:58:33 = hWnd = 0x001a0466; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 12:58:33 = hWnd = 0x00150498; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 12:58:33 = hWnd = 0x000203ee; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 12:58:33 = hWnd = 0x000a047a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 12:58:43 = Process Attach 12:58:43 = ## ERR ## Setevent 12:58:43 = ##### Get event and release process ##### 12:58:43 = begin close Process 12:58:43 = end close Process 12:58:43 = ##### Get event and release process end ##### 12:58:43 = hWnd = 0x000200e4; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 12:58:43 = hWnd = 0x000200f4; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 12:58:43 = hWnd = 0x0003008a; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 12:58:43 = hWnd = 0x001e00c0; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 13:53:34 = Process Attach 13:53:34 = end process attach 13:53:34 = ##### Begin waiting Mutex to release process ##### 13:53:34 = ***** NULL == SampleProvider ***** 13:53:34 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 13:53:34 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 13:53:34 = hWnd = 0x00010024; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 13:53:34 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 13:56:12 = Process Attach 13:56:12 = ## ERR ## Setevent 13:56:12 = ##### Get event and release process ##### 13:56:12 = begin close Process 13:56:12 = ***** NULL == SampleProvider ***** 13:56:12 = ##### Get event and release process end ##### 13:56:12 = hWnd = 0x000300a0; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 13:56:12 = hWnd = 0x00030076; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 13:56:12 = hWnd = 0x00040092; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 13:56:12 = hWnd = 0x0003003e; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 13:57:35 = Process Attach 13:57:35 = end process attach 13:57:35 = ***** NULL == SampleProvider ***** 13:57:35 = ##### Begin waiting Mutex to release process ##### 13:57:35 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 13:57:35 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 13:57:35 = hWnd = 0x00010022; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 13:57:35 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 13:58:1 = Need to re-create objects. 13:58:1 = s1. 13:58:1 = s2. 13:58:1 = find user name 13:58:1 = Start show animate 13:58:1 = Shell Excutute VerifyHost 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = find user name 13:58:1 = Process Attach 13:58:1 = ## ERR ## Setevent 13:58:1 = ***** NULL == SampleProvider ***** 13:58:1 = ##### Get event and release process ##### 13:58:1 = begin close Process 13:58:1 = end close Process 13:58:1 = ##### Get event and release process end ##### 13:58:1 = hWnd = 0x000100aa; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1024, height=768 13:58:1 = hWnd = 0x0002007a; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 13:58:1 = hWnd = 0x000100ae; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 13:58:1 = hWnd = 0x00030080; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 13:59:20 = Process Attach 13:59:20 = end process attach 13:59:20 = ***** NULL == SampleProvider ***** 13:59:20 = ##### Begin waiting Mutex to release process ##### 13:59:20 = hWnd = 0x0001001c; ClassName: AUTHUI.DLL: LogonUI Logon Window; Title: Windows 登入.x=0, y=0, width=1366, height=768 13:59:20 = hWnd = 0x00010018; ClassName: GDI+ Hook Window Class; Title: GDI+ Window.x=0, y=0, width=1, height=1 13:59:21 = hWnd = 0x00010022; ClassName: MSCTFIME UI; Title: MSCTFIME UI.x=0, y=0, width=0, height=0 13:59:21 = hWnd = 0x0001001a; ClassName: IME; Title: Default IME.x=0, y=0, width=0, height=0 13:59:57 = Need to re-create objects. 13:59:57 = s1. 13:59:57 = s2. 13:59:57 = find user name 13:59:57 = Start show animate 13:59:57 = Shell Excutute VerifyHost 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 13:59:57 = find user name 14:0:23 = find user name 中間差不多省略 21:46:37 = s2. 21:46:38 = find user name 21:46:38 = Start show animate 21:46:38 = Shell Excutute VerifyHost 21:46:38 = find user name 21:46:38 = find user name 21:46:38 = find user name 21:46:38 = find user name 21:46:38 = find user name 21:46:42 = find user name 21:46:42 = find user name 21:46:42 = find user name 21:46:42 = find user name 21:46:42 = find user name 21:46:42 = find user name 21:46:42 = find user name 21:46:46 = find user name 21:46:46 = find user name 21:46:46 = find user name 21:46:46 = find user name 21:46:46 = find user name 21:46:46 = find user name 21:47:0 = begin close Process 21:47:0 = Terminate Process 21:47:1 = end close Process 21:47:1 = DLL_PROCESS_DETACH -- ※ 發信站: 批踢踢實業坊(ptt.cc), 來自: 118.233.65.154 ※ 文章網址: https://www.ptt.cc/bbs/CodeJob/M.1427986324.A.DD1.html

→

azureshin

04/03 02:09, , 1^F

04/03 02:09, 1^F

→

chengchieh

04/03 11:30, , 2^F

04/03 11:30, 2^F

→

TobyH4cker

04/03 22:53, , 3^F

04/03 22:53, 3^F