用windbg附加到进程easy rm to MP3 来寻找jmp esp指令，出现跟符号文件有关的错误：
0:018> a
7736000c jmp esp
jmp esp
*** WARNING: Unable to verify checksum for D:\Program Files (x86)\Easy RM to MP3 Converter\MSRMCcodec01.dll
*** ERROR: Symbol file could not be found.  Defaulted to export symbols for D:\Program Files (x86)\Easy RM to MP3 Converter\MSRMCcodec01.dll -
*** WARNING: Unable to verify checksum for D:\Program Files (x86)\Easy RM to MP3 Converter\RM2MP3Converter.exe
*** ERROR: Module load completed but symbols could not be loaded for D:\Program Files (x86)\Easy RM to MP3 Converter\RM2MP3Converter.exe
*** WARNING: Unable to verify checksum for D:\Program Files (x86)\Easy RM to MP3 Converter\MSRMfilter01.dll
*** ERROR: Symbol file could not be found.  Defaulted to export symbols for D:\Program Files (x86)\Easy RM to MP3 Converter\MSRMfilter01.dll -
*** WARNING: Unable to verify checksum for D:\Program Files (x86)\Easy RM to MP3 Converter\MSRMCcodec00.dll
等很多，按结果的地址码反汇编得到的不是jmp esp  而是nop指令：

0:018> u 7736000e
ntdll!DbgBreakPoint+0x2:
7736000e 90              nop
7736000f 90              nop
77360010 8b4c2404        mov     ecx,dword ptr [esp+4]
77360014 f6410406        test    byte ptr [ecx+4],6
77360018 7405            je      ntdll!DbgBreakPoint+0x13 (7736001f)
7736001a e8a11d0100      call    ntdll!ZwTestAlert (77371dc0)
7736001f b801000000      mov     eax,1
77360024 c21000          ret     10h
新手不知道怎么解决这个问题，希望大家帮帮忙

[培训]内核驱动高级班，冲击BAT一流互联网大厂工作，每周日13:00-18:00直播授课