.text:0000000140071740 KiSystemCall64 proc near ; DATA XREF: KiInitializeBootStructures+11Co .text:0000000140071740 .text:0000000140071740 var_110 = byte ptr -110h .text:0000000140071740 .text:0000000140071740 swapgs .text:0000000140071743 mov gs:10h, rsp .text:000000014007174C mov rsp, gs:1A8h .text:0000000140071755 push 2Bh .text:0000000140071757 push qword ptr gs:10h .text:000000014007175F push r11 .text:0000000140071761 push 33h .text:0000000140071763 push rcx .text:0000000140071764 mov rcx, r10 .text:0000000140071767 sub rsp, 8 .text:000000014007176B push rbp .text:000000014007176C sub rsp, 158h .text:0000000140071773 lea rbp, [rsp+190h+var_110] .text:000000014007177B mov [rbp+0C0h], rbx .text:0000000140071782 mov [rbp+0C8h], rdi .text:0000000140071789 mov [rbp+0D0h], rsi .text:0000000140071790 mov byte ptr [rbp-55h], 2 .text:0000000140071794 mov rbx, gs:188h .text:000000014007179D prefetchw byte ptr [rbx+90h] .text:00000001400717A4 stmxcsr dword ptr [rbp-54h] .text:00000001400717A8 ldmxcsr dword ptr gs:180h .text:00000001400717B1 cmp byte ptr [rbx+3], 0 .text:00000001400717B5 mov word ptr [rbp+80h], 0 .text:00000001400717BE jz loc_140071850 .text:00000001400717C4 mov [rbp-50h], rax .text:00000001400717C8 mov [rbp-48h], rcx .text:00000001400717CC mov [rbp-40h], rdx .text:00000001400717D0 test byte ptr [rbx+3], 3 .text:00000001400717D4 mov [rbp-38h], r8 .text:00000001400717D8 mov [rbp-30h], r9 .text:00000001400717DC jz short loc_1400717E3 .text:00000001400717DE call KiSaveDebugRegisterState .text:00000001400717E3 .text:00000001400717E3 loc_1400717E3: ; CODE XREF: KiSystemCall64+9Cj .text:00000001400717E3 test byte ptr [rbx+3], 80h .text:00000001400717E7 jz short loc_14007182B .text:00000001400717E9 mov ecx, 0C0000102h .text:00000001400717EE rdmsr .text:00000001400717F0 shl rdx, 20h .text:00000001400717F4 or rax, rdx .text:00000001400717F7 cmp [rbx+0F0h], rax .text:00000001400717FE jz short loc_14007182B .text:0000000140071800 cmp [rbx+1F8h], rax .text:0000000140071807 jz short loc_14007182B .text:0000000140071809 mov rdx, [rbx+1E8h] .text:0000000140071810 bts dword ptr [rbx+74h], 0Ah .text:0000000140071815 dec word ptr [rbx+1DEh] .text:000000014007181C mov [rdx+80h], rax .text:0000000140071823 sti .text:0000000140071824 call KiUmsCallEntry .text:0000000140071829 jmp short loc_140071836 .text:000000014007182B ; --------------------------------------------------------------------------- .text:000000014007182B .text:000000014007182B loc_14007182B: ; CODE XREF: KiSystemCall64+A7j .text:000000014007182B ; KiSystemCall64+BEj ... .text:000000014007182B test byte ptr [rbx+3], 40h .text:000000014007182F jz short loc_140071836 .text:0000000140071831 bts dword ptr [rbx+74h], 12h .text:0000000140071836 .text:0000000140071836 loc_140071836: ; CODE XREF: KiSystemCall64+E9j .text:0000000140071836 ; KiSystemCall64+EFj .text:0000000140071836 mov rax, [rbp-50h] .text:000000014007183A mov rcx, [rbp-48h] .text:000000014007183E mov rdx, [rbp-40h] .text:0000000140071842 mov r8, [rbp-38h] .text:0000000140071846 mov r9, [rbp-30h] .text:000000014007184A nop word ptr [rax+rax+00h] .text:0000000140071850 .text:0000000140071850 loc_140071850: ; CODE XREF: KiSystemCall64+7Ej .text:0000000140071850 sti .text:0000000140071851 mov [rbx+88h], rcx .text:0000000140071858 mov [rbx+80h], eax