Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- date/time : 2016-03-06, 23:24:14, 629ms
- computer name : RAISTLIN
- user name : Raistlin
- registered owner : Pre-Installed User / Pre-Installed Company
- operating system : Windows XP Service Pack 3 build 2600
- system language : Russian
- system up time : 1 day 2 hours
- program up time : 49 seconds
- processors : 4x Intel(R) Xeon(R) CPU E5430 @ 2.66GHz
- physical memory : 706/3327 MB (free/total)
- free disk space : (C:) 12,50 GB
- display mode : 1920x1080, 32 bit
- process id : $1400
- allocated memory : 195,48 MB
- largest free block : 613,87 MB
- command line : "C:\Programs\MPC-HC\mpc-hc.exe" "P:\Video\_I\#Extras\+ Валери Рё неделя чудес _ Valerie a tyden divu (РЇСЂРѕРјРёР» Рреш _ Jaromil Jires) [1970, Сюрреализм, DVD5 (custom)]\VIDEO_TS\VIDEO_TS.IFO"
- executable : mpc-hc.exe
- current module : MADHCNET32.DLL
- module date/time : 2015-11-18 20:01
- version : 1.0.17.12
- compiled with : Delphi XE7
- madExcept version : 4.0.13
- callstack crc : $21c8bb98, $e374db57, $9763057a
- exception number : 1
- exception message : The process seems to be frozen.
- main thread ($1bb8):
- 7c90df58 +00a ntdll.dll NtWaitForSingleObject
- 7c919b1e +087 ntdll.dll RtlpWaitForCriticalSection
- 7c901041 +041 ntdll.dll RtlEnterCriticalSection
- 7e42a034 +016 USER32.dll CallWindowProcW
- 4a40b7a3 +183 madVR.ax direct3d.cpp 101 +39 GlobalWindowProc
- 7e418a0b +00a USER32.dll DispatchMessageW
- thread $950:
- 7c90df48 +a ntdll.dll NtWaitForMultipleObjects
- thread $1b58:
- 7c90d218 +a ntdll.dll NtDelayExecution
- thread $8d4:
- 7c90da48 +a ntdll.dll NtRemoveIoCompletion
- thread $ac8:
- 7c90df48 +a ntdll.dll NtWaitForMultipleObjects
- thread $1fa4:
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7e4195f3 +00 USER32.dll MsgWaitForMultipleObjectsEx
- 7e4196a3 +1a USER32.dll MsgWaitForMultipleObjects
- thread $f94:
- 7c90daa8 +a ntdll.dll NtReplyWaitReceivePortEx
- thread $1770:
- 7c90d218 +0a ntdll.dll NtDelayExecution
- 7c8023eb +4b kernel32.dll SleepEx
- 7c802450 +0a kernel32.dll Sleep
- 7c910432 +25 ntdll.dll RtlAcquirePebLock
- thread $1f38:
- 7c90df58 +00a ntdll.dll NtWaitForSingleObject
- 7c919b1e +087 ntdll.dll RtlpWaitForCriticalSection
- 7c901041 +041 ntdll.dll RtlEnterCriticalSection
- 4a44a741 +101 madVR.ax madvr.cpp 7460 +21 CVideoRenderer.CheckDvdPlayback
- 4a4a3145 +325 madVR.ax videotxt.cpp 537 +163 CVideoText.OnReceiveMessage
- 7c91045d +00c ntdll.dll RtlReleasePebLock
- 7c910432 +025 ntdll.dll RtlAcquirePebLock
- 7c914f4c +03d ntdll.dll RtlAppendUnicodeStringToString
- 77f640ce +048 SHLWAPI.dll #219
- 7c9eb265 +015 SHELL32.dll SHAlloc
- 77f640ce +048 SHLWAPI.dll #219
- 774fd030 +010 ole32.dll CoTaskMemAlloc
- 7c80ba26 +012 kernel32.dll UnmapViewOfFile
- 7c9ea9cf +015 SHELL32.dll SHFree
- 7ca2fe3a +068 SHELL32.dll SHAddToRecentDocs
- 7c910432 +025 ntdll.dll RtlAcquirePebLock
- 7c91045d +00c ntdll.dll RtlReleasePebLock
- 7c910432 +025 ntdll.dll RtlAcquirePebLock
- 7c91045d +00c ntdll.dll RtlReleasePebLock
- 7c914ee2 +048 ntdll.dll RtlAppendUnicodeToString
- 7c90e470 +010 ntdll.dll KiUserCallbackDispatcher
- 4a4c44f8 +0d8 madVR.ax _freebuf.c 58 +0 WndProc
- 7e418a0b +00a USER32.dll DispatchMessageW
- thread $1e20:
- 7e4191ec +26 USER32.dll GetMessageW
- thread $1c8c: <priority:1>
- 7c90da48 +a ntdll.dll NtRemoveIoCompletion
- thread $1dbc:
- 7e4191ec +26 USER32.dll GetMessageW
- thread $ee4: <priority:15>
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7c80a110 +13 kernel32.dll WaitForMultipleObjects
- thread $1d58:
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7e4195f3 +00 USER32.dll MsgWaitForMultipleObjectsEx
- 7e4196a3 +1a USER32.dll MsgWaitForMultipleObjects
- thread $944:
- 7c90daa8 +a ntdll.dll NtReplyWaitReceivePortEx
- thread $188c:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- thread $1f28:
- 7e4191ec +26 USER32.dll GetMessageW
- KeyboardThreadProc ($128c):
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7e4195f3 +00 USER32.dll MsgWaitForMultipleObjectsEx
- 7e4196a3 +1a USER32.dll MsgWaitForMultipleObjects
- 4a453b61 +b1 madVR.ax osd.cpp 1887 +10 COsd.KeyboardThreadMethod
- 4a456a3e +5e madVR.ax osd.cpp 1871 +3 KeyboardThreadProc
- WindowQueueThread ($154): <priority:2>
- 7e4191ec +026 USER32.dll GetMessageW
- 077e7a02 +102 MADHCNET32.DLL madNetTools 1426 +17 WindowQueueThread
- thread $1a40:
- 7c90d9d8 +00a ntdll.dll NtReadFile
- 7c801873 +061 kernel32.dll ReadFile
- 077e3097 +1eb MADHCNET32.DLL madCodeHook PipedIpcThread1
- CheckWindowConnectionThread ($1cc0):
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 077e72d9 +41 MADHCNET32.DLL madNetTools 1277 +6 CheckWindowConnectionThread
- thread $17b0:
- 7e4191ec +26 USER32.dll GetMessageW
- thread $c34: <priority:15>
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- thread $1f6c:
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7c80a110 +13 kernel32.dll WaitForMultipleObjects
- thread $1bdc:
- 7e427766 +3b USER32.dll GetMessageA
- thread $1888:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- thread $1fb8:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- thread $8c8:
- 7e427766 +3b USER32.dll GetMessageA
- thread $25c:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- CFrameQueue::RenderThread ($87c): <priority:2>
- 7c90df48 +00a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +000 kernel32.dll WaitForMultipleObjectsEx
- 7c80a110 +013 kernel32.dll WaitForMultipleObjects
- 4a4379a6 +7f6 madVR.ax framequeue.cpp 13223 +264 CFrameQueue.RenderThread
- 4a43c884 +004 madVR.ax framequeue.cpp 197 +0 Queue_RenderThread
- CVSync::CollectThreadMethod ($ce0): <priority:15>
- 4a4a7129 +459 madVR.ax vsync.cpp 818 +170 CVSync.CollectThreadMethod
- 4a4a8d34 +004 madVR.ax vsync.cpp 91 +0 VSync_CollectThreadProc
- CVSync::EvaluateThreadMethod ($1d2c):
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 4a4a8f99 +79 madVR.ax vsync.cpp 1359 +5 CVSync.EvaluateThreadMethod
- 4a4a9194 +04 madVR.ax vsync.cpp 98 +0 VSync_EvaluateThreadProc
- CFrameQueue::PresentThread ($17dc): <priority:2>
- 7c90d218 +0a ntdll.dll NtDelayExecution
- 7c8023eb +4b kernel32.dll SleepEx
- 7c802450 +0a kernel32.dll Sleep
- 4a436e1b +8b madVR.ax framequeue.cpp 12771 +14 CFrameQueue.PresentThread
- 4a4371a4 +04 madVR.ax framequeue.cpp 198 +0 Queue_PresentThread
- CFrameQueue::IvtcThread ($d20):
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 4a433ada +7a madVR.ax framequeue.cpp 11909 +7 CFrameQueue.IvtcThread
- 4a436064 +04 madVR.ax framequeue.cpp 193 +0 Queue_IvtcThread
- CFrameQueue::SubtitleThread ($150):
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 4a433eea +7a madVR.ax framequeue.cpp 12036 +7 CFrameQueue.SubtitleThread
- 4a4360b4 +04 madVR.ax framequeue.cpp 200 +0 Queue_SubtitleThread
- CFrameQueue::UploadThread ($12f8): <priority:1>
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 4a431c5a +7a madVR.ax framequeue.cpp 8981 +7 CFrameQueue.UploadThread
- 4a436074 +04 madVR.ax framequeue.cpp 194 +0 Queue_UploadThread
- CFrameQueue::DxvaProcessThread ($a4c):
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 4a4333ca +7a madVR.ax framequeue.cpp 9492 +7 CFrameQueue.DxvaProcessThread
- 4a436084 +04 madVR.ax framequeue.cpp 195 +0 Queue_DxvaProcessThread
- CFrameQueue::SplitThread ($12b0):
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 4a43375a +7a madVR.ax framequeue.cpp 9991 +7 CFrameQueue.SplitThread
- 4a436094 +04 madVR.ax framequeue.cpp 196 +0 Queue_SplitThread
- CDirect3D::ResetThread ($1608):
- 7c90df58 +00a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +085 kernel32.dll WaitForSingleObjectEx
- 7c80253d +00d kernel32.dll WaitForSingleObject
- 4a40de59 +139 madVR.ax direct3d.cpp 3967 +30 CDirect3D.ResetThread
- 4a40ded4 +004 madVR.ax direct3d.cpp 3991 +0 CDirect3D_ResetThread
- thread $1918:
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7c80a110 +13 kernel32.dll WaitForMultipleObjects
- 4a451e41 +e1 madVR.ax madvr.cpp 4731 +35 CVideoRenderer.Receive
- 4a403a3a +4a madVR.ax customren.cpp 1632 +6 CCustomRendererInputPin.Receive
- 4a44be81 +e1 madVR.ax madvr.cpp 8250 +20 CMediaSample3D.GetProperties
- 774fd014 +10 ole32.dll CoTaskMemFree
- thread $1d60:
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7c80a110 +13 kernel32.dll WaitForMultipleObjects
- thread $e40:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- thread $1bc8: <priority:1>
- 7c90d218 +0a ntdll.dll NtDelayExecution
- 7c8023eb +4b kernel32.dll SleepEx
- 7c802450 +0a kernel32.dll Sleep
- thread $11b0:
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7e4195f3 +00 USER32.dll MsgWaitForMultipleObjectsEx
- 7e4196a3 +1a USER32.dll MsgWaitForMultipleObjects
- thread $cd0:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 77c3a3ad +a6 msvcrt.dll _endthreadex
- thread $1b7c:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 77c3a3ad +a6 msvcrt.dll _endthreadex
- thread $da4:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 77c3a3ad +a6 msvcrt.dll _endthreadex
- thread $1d18:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 77c3a3ad +a6 msvcrt.dll _endthreadex
- thread $140c:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 77c3a3ad +a6 msvcrt.dll _endthreadex
- thread $15c0:
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- 77c3a3ad +a6 msvcrt.dll _endthreadex
- thread $b14: <priority:1>
- 7c90df58 +0a ntdll.dll NtWaitForSingleObject
- 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
- 7c80253d +0d kernel32.dll WaitForSingleObject
- thread $3ac: <priority:15>
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7c80a110 +13 kernel32.dll WaitForMultipleObjects
- thread $1560: <priority:15>
- 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
- 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
- 7c80a110 +13 kernel32.dll WaitForMultipleObjects
- CreateFreezeReportThread ($1c40):
- 077c951a +1ae MADHCNET32.DLL madExcept GetThreadReport
- 077ca4bb +50f MADHCNET32.DLL madExcept TIMEException.CompleteBugReport
- 077cb9b6 +30a MADHCNET32.DLL madExcept TIMEException.GetBugReportSections
- 077cbcb1 +0dd MADHCNET32.DLL madExcept TIMEException.GetBugReport
- 077c5cd6 +09a MADHCNET32.DLL madExcept CreateBugReport
- 078077a7 +037 MADHCNET32.DLL madHcNet 240 +1 madGetFreezeReport
- 4a45380c +07c madVR.ax osd.cpp 194 +6 CreateFreezeReportThread
- modules:
- 00340000 Normaliz.dll 6.0.5441.0 C:\WINDOWS\system32
- 00400000 mpc-hc.exe 1.7.10.101 C:\Programs\MPC-HC
- 01830000 AmlMaple.dll 3.7.3.223 C:\Program Files\Aml Maple
- 01990000 PSHFHlp.dll C:\Program Files\PS Hot Folders
- 01b20000 HKDll.dll C:\Program Files\PS Tray Factory
- 020a0000 vlmshlp.dll 2.0.3.27 C:\Programs\Volumouse
- 020b0000 xpsp2res.dll 5.1.2600.5512 C:\WINDOWS\system32
- 03b50000 textboardhk.dll 3.2.0.0 C:\Program Files\TextBoard
- 03b90000 ctagent.dll 6.0.301.44 C:\WINDOWS\system32
- 03ba0000 nnhook.dll C:\Program Files\nnCron
- 04460000 LAVVideo.ax 0.67.0.70 C:\Programs\MPC-HC\LAVFilters
- 04580000 avutil-lav-55.dll 55.15.100.0 C:\Programs\MPC-HC\LAVFilters
- 04630000 avcodec-lav-57.dll 57.22.101.0 C:\Programs\MPC-HC\LAVFilters
- 05620000 avresample-lav-3.dll 3.0.0.0 C:\Programs\MPC-HC\LAVFilters
- 05650000 swscale-lav-4.dll 4.0.100.0 C:\Programs\MPC-HC\LAVFilters
- 056f0000 avfilter-lav-6.dll 6.27.100.0 C:\Programs\MPC-HC\LAVFilters
- 05e70000 LAVVideo.ax 0.67.0.62 C:\Program Files\LAV Filters\x86
- 05f90000 avutil-lav-55.dll 55.12.100.0 C:\Program Files\LAV Filters\x86
- 06270000 ffdshow.ax 1.3.4533.0 C:\Program Files\ffdshow
- 06670000 avcodec-lav-57.dll 57.21.100.0 C:\Program Files\LAV Filters\x86
- 07630000 avresample-lav-3.dll 3.0.0.0 C:\Program Files\LAV Filters\x86
- 07660000 swscale-lav-4.dll 4.0.100.0 C:\Program Files\LAV Filters\x86
- 07700000 avfilter-lav-6.dll 6.23.100.0 C:\Program Files\LAV Filters\x86
- 07740000 MADHCNET32.DLL 1.0.17.12 C:\Programs\madVR\0.90.4
- 07840000 MVRSETTINGS32.DLL 1.1.11.2 C:\Programs\madVR\0.90.4
- 0aa90000 LAVAudio.ax 0.67.0.70 C:\Programs\MPC-HC\LAVFilters
- 0ab10000 AcSignIcon.dll 19.0.55.0 C:\WINDOWS\system32
- 0acb0000 ReClock.dll 1.8.8.5 C:\Program Files\ReClock
- 0ad20000 Resampler.dll 1.0.0.3 C:\Program Files\ReClock
- 0ad50000 Timestretch.dll C:\Program Files\ReClock
- 0ad90000 Compressor.dll C:\Program Files\ReClock
- 0aec0000 AC3Lib.dll C:\Program Files\ReClock
- 0b0b0000 avformat-lav-57.dll 57.23.100.0 C:\Programs\MPC-HC\LAVFilters
- 0be20000 d3dx9_43.dll 9.29.952.3111 C:\Programs\MPC-HC
- 10000000 crashrpt.dll 2.0.17.0 C:\Programs\MPC-HC\CrashReporter
- 3d930000 WININET.dll 8.0.6001.23580 C:\WINDOWS\system32
- 3dfd0000 iertutil.dll 8.0.6001.23580 C:\WINDOWS\system32
- 471b0000 qdvd.dll 6.5.2600.6169 C:\WINDOWS\system32
- 4a400000 madVR.ax 0.90.4.0 C:\Programs\madVR\0.90.4
- 4ec50000 gdiplus.dll 5.2.6002.23084 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550
- 4fdd0000 d3d9.dll 5.3.2600.5512 C:\WINDOWS\system32
- 5ad70000 UxTheme.dll 6.0.2900.5512 C:\WINDOWS\system32
- 5b860000 NETAPI32.dll 5.1.2600.6260 C:\WINDOWS\system32
- 5d360000 MFC100ENU.DLL 10.0.40219.325 C:\WINDOWS\system32
- 5edd0000 olepro32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 61880000 OLEACC.dll 7.0.2600.6153 C:\WINDOWS\system32
- 662b0000 hnetcfg.dll 5.1.2600.5512 C:\WINDOWS\system32
- 6d990000 d3d8thk.dll 5.3.2600.5512 C:\WINDOWS\system32
- 71a50000 mswsock.dll 5.1.2600.5625 C:\WINDOWS\system32
- 71a90000 wshtcpip.dll 5.1.2600.5512 C:\WINDOWS\System32
- 71aa0000 WS2HELP.dll 5.1.2600.5512 C:\WINDOWS\system32
- 71ab0000 WS2_32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 71ad0000 wsock32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 71b20000 MPR.dll 5.1.2600.5512 C:\WINDOWS\system32
- 71bf0000 SAMLIB.dll 5.1.2600.5512 C:\WINDOWS\system32
- 71c10000 ntlanman.dll 5.1.2600.5512 C:\WINDOWS\System32
- 71c80000 NETRAP.dll 5.1.2600.5512 C:\WINDOWS\System32
- 71c90000 NETUI1.dll 5.1.2600.5512 C:\WINDOWS\System32
- 71cd0000 NETUI0.dll 5.1.2600.5512 C:\WINDOWS\System32
- 72280000 DINPUT.dll 5.3.2600.5512 C:\WINDOWS\system32
- 72d10000 msacm32.drv 5.1.2600.0 C:\WINDOWS\system32
- 72d20000 wdmaud.drv 5.1.2600.5512 C:\WINDOWS\system32
- 73000000 WINSPOOL.DRV 5.1.2600.5512 C:\WINDOWS\system32
- 736b0000 msdmo.dll 6.5.2600.5512 C:\WINDOWS\system32
- 73760000 DDRAW.dll 5.3.2600.5512 C:\WINDOWS\system32
- 73bc0000 DCIMAN32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 73ee0000 KsUser.dll 5.3.2600.5512 C:\WINDOWS\system32
- 73f10000 dsound.dll 5.3.2600.5512 C:\WINDOWS\system32
- 74720000 MSCTF.dll 5.1.2600.5512 C:\WINDOWS\system32
- 74810000 quartz.dll 6.5.2600.6333 C:\WINDOWS\system32
- 755c0000 msctfime.ime 5.1.2600.5512 C:\WINDOWS\system32
- 75f40000 devenum.dll 6.5.2600.5512 C:\WINDOWS\system32
- 75f60000 drprov.dll 5.1.2600.5512 C:\WINDOWS\System32
- 75f70000 davclnt.dll 5.1.2600.5512 C:\WINDOWS\System32
- 76360000 WINSTA.dll 5.1.2600.5512 C:\WINDOWS\system32
- 76380000 MSIMG32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 76390000 IMM32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 763b0000 COMDLG32.dll 6.0.2900.5512 C:\WINDOWS\system32
- 76b40000 WINMM.dll 5.1.2600.6160 C:\WINDOWS\system32
- 76c30000 WINTRUST.dll 5.131.2600.6285 C:\WINDOWS\system32
- 76c90000 IMAGEHLP.dll 5.1.2600.6479 C:\WINDOWS\system32
- 76d60000 iphlpapi.dll 5.1.2600.5512 C:\WINDOWS\system32
- 76f20000 dnsapi.dll 5.1.2600.6089 C:\WINDOWS\system32
- 76f50000 WTSAPI32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 76f60000 WLDAP32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 76fd0000 CLBCATQ.DLL 2001.12.4414.700 C:\WINDOWS\system32
- 77050000 COMRes.dll 2001.12.4414.700 C:\WINDOWS\system32
- 77120000 OLEAUT32.dll 5.1.2600.6341 C:\WINDOWS\system32
- 773d0000 COMCTL32.dll 6.0.2900.6028 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202
- 774e0000 ole32.dll 5.1.2600.6435 C:\WINDOWS\system32
- 77690000 NTMARTA.DLL 5.1.2600.5512 C:\WINDOWS\system32
- 77920000 setupapi.dll 5.1.2600.5512 C:\WINDOWS\system32
- 77a80000 CRYPT32.dll 5.131.2600.6459 C:\WINDOWS\system32
- 77b20000 MSASN1.dll 5.1.2600.5875 C:\WINDOWS\system32
- 77b40000 appHelp.dll 5.1.2600.5512 C:\WINDOWS\system32
- 77bd0000 midimap.dll 5.1.2600.5512 C:\WINDOWS\system32
- 77be0000 MSACM32.dll 5.1.2600.5512 C:\WINDOWS\system32
- 77c00000 VERSION.dll 5.1.2600.5512 C:\WINDOWS\system32
- 77c10000 msvcrt.dll 7.0.2600.5512 C:\WINDOWS\system32
- 77dd0000 ADVAPI32.dll 5.1.2600.5755 C:\WINDOWS\system32
- 77e70000 RPCRT4.dll 5.1.2600.6477 C:\WINDOWS\system32
- 77f10000 GDI32.dll 5.1.2600.6460 C:\WINDOWS\system32
- 77f60000 SHLWAPI.dll 6.0.2900.5912 C:\WINDOWS\system32
- 77fe0000 Secur32.dll 5.1.2600.5834 C:\WINDOWS\system32
- 78130000 urlmon.dll 8.0.6001.23580 C:\WINDOWS\system32
- 785f0000 mfc100u.dll 10.0.40219.325 C:\WINDOWS\system32
- 78aa0000 MSVCR100.dll 10.0.40219.325 C:\WINDOWS\system32
- 7c800000 kernel32.dll 5.1.2600.6532 C:\WINDOWS\system32
- 7c900000 ntdll.dll 5.1.2600.6055 C:\WINDOWS\system32
- 7c9c0000 SHELL32.dll 6.0.2900.6242 C:\WINDOWS\system32
- 7df70000 oledlg.dll 5.1.2600.5512 C:\WINDOWS\system32
- 7e410000 USER32.dll 5.1.2600.5512 C:\WINDOWS\system32
- processes:
- 0000 Idle 0 0
- 0004 System 0 0
- 02ac smss.exe 0 0
- 02e4 csrss.exe 0 0
- 030c winlogon.exe 0 0
- 0338 services.exe 0 0
- 035c lsass.exe 0 0
- 03fc ati2evxx.exe 0 0
- 0410 svchost.exe 0 0
- 0454 svchost.exe 0 0
- 0634 svchost.exe 0 0
- 064c svchost.exe 0 0
- 06dc ati2evxx.exe 0 0
- 0708 svchost.exe 0 0
- 07d4 spoolsv.exe 0 0
- 00dc CTAudSvc.exe 0 0
- 0508 eservutil.exe 0 0
- 051c AEADISRV.EXE 0 0
- 0530 ArcSecurity.exe 0 0
- 0540 svchost.exe 0 0
- 0574 DkService.exe 0 0
- 05e8 DKSAdmin.exe 0 0
- 0670 dwservice.exe 0 0
- 0270 Explorer.EXE 334 185 normal C:\WINDOWS
- 04d4 nncron.exe 0 0
- 0378 svchost.exe 0 0
- 05d8 vmount2.exe 0 0
- 0684 nnguard.exe 0 0
- 0808 vmnat.exe 0 0
- 08b0 wmiapsrv.exe 0 0
- 0a74 IAStorDataMgrSvc.exe 0 0
- 0b68 vmware-authd.exe 0 0
- 0c64 wmiprvse.exe 0 0
- 0ce8 vmnetdhcp.exe 0 0
- 0dcc vmware-usbarbitrator.exe 0 0
- 0e08 vmware-hostd.exe 0 0
- 0880 dwengine.exe 0 0
- 0f60 alg.exe 0 0
- 0f68 dwarkdaemon.exe 0 0
- 0f88 speedfan.exe 279 130 normal C:\Program Files\SpeedFan
- 09ec vmware-tray.exe 36 19 normal C:\Program Files\VMware\VMware Workstation
- 0a18 RTHDCPL.EXE 720 190 normal C:\WINDOWS
- 0910 rundll32.exe 29 14 normal C:\WINDOWS\system32
- 071c CTHELPER.EXE 26 21 normal C:\WINDOWS\system32
- 0b84 spideragent.exe 45 22 normal C:\Program Files\DrWeb
- 0fac MOM.exe 21 17 normal C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
- 09bc ccc.exe 50 65 normal C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
- 0ff4 nncron.exe 24 14 normal C:\Program Files\nnCron
- 0fe8 DTLite.exe 198 61 normal C:\Program Files\DAEMON Tools Lite
- 0860 PCSuite.exe 40 24 normal C:\Program Files\Nokia\Nokia PC Suite 7
- 0924 nnguard.exe 0 0 normal C:\Program Files\nnCron
- 08ec ctfmon.exe 34 20 normal C:\WINDOWS\system32
- 0ea0 DiscSoftBusService.exe 0 0
- 0974 AmlMaple.exe 26 23 normal C:\Program Files\Aml Maple
- 0d00 CD Eject Tool.exe 290 156 normal C:\Program Files\CD Eject Tool
- 0b28 k-mania.exe 26 14 normal C:\Program Files\Kleptomania
- 0d70 NLCalc.exe 106 52 normal C:\Program Files\NumLock Calculator 3_2
- 0e38 prkiller.exe 54 24 high C:\Programs\Process Killer
- 0e48 PSHotFolders.exe 360 145 normal C:\Program Files\PS Hot Folders
- 0e50 HotSwap!.EXE 0 0
- 0d0c PSTrayFactory.exe 244 225 normal C:\Program Files\PS Tray Factory
- 0ebc StrThief.exe 27 17 normal C:\Programs
- 0f70 textboard.exe 39 45 normal C:\Program Files\TextBoard
- 0fa4 USDownloader.exe 117 61 normal C:\Programs\USDownloader
- 0590 volumouse.exe 36 24 normal C:\Programs\Volumouse
- 0a58 winlirc.exe 38 49 high C:\Programs\WinLIRC
- 08d0 Far.exe 21 30 normal C:\Program Files\Far2
- 0d90 KeePass.exe 90 71 normal C:\Program Files\KeePass2x
- 0db0 gestures.exe 23 13 high C:\Program Files\TextBoard
- 0dc4 miranda32.exe 502 178 normal C:\Program Files\Miranda IM
- 0818 firefox.exe 747 162 normal C:\Program Files\Mozilla Firefox
- 0b54 Skype.exe 495 166 normal C:\Program Files\Skype\Phone
- 0f30 thebat32.exe 913 190 normal C:\Program Files\The Bat!
- 0efc TrueCrypt.exe 58 58 normal C:\Program Files\TrueCrypt
- 139c WSWATCH.EXE 440 181 normal C:\Program Files\WebSite-Watcher
- 159c IAStorIcon.exe 46 33 normal C:\Program Files\Intel\Intel(R) Rapid Storage Technology
- 17a0 mstsc.exe 99 85 normal C:\WINDOWS\system32
- 121c dwwatcher.exe 0 0
- 14a0 Far.exe 0 0
- 15f4 Diskeeper12.exe 117 85 normal C:\Program Files\Condusiv Technologies\Diskeeper
- 1694 WPFFontCache_v0400.exe 0 0
- 1b60 bcsvc.exe 0 0
- 1cf0 WhereIsIt.exe 887 349 normal C:\Program Files\WhereIsIt
- 1b8c DvdReMakePro.exe 747 405 normal C:\Programs\DvdReMakePro
- 04ec DvdReMakePro.exe 805 410 normal C:\Programs\DvdReMakePro
- 15f8 Far.exe 0 0
- 1f5c utorrent.exe 0 0
- 1c98 tips.exe 61 10 normal C:\Program Files\DrWeb
- 1400 mpc-hc.exe 292 376 above normal C:\Programs\MPC-HC
- 1a54 madHcCtrl.exe 91 41 normal C:\Programs\madVR\0.90.4
- hardware:
- + Computer
- - ACPI Multiprocessor PC
- + Disk drives
- - WDC WD2000FYYZ-01UL1B0
- + Display adapters
- - AMD Radeon HD 5700 Series (driver 9.0.100.9001)
- + DVD/CD-ROM drives
- - Optiarc DVD RW AD-7240S
- + Floppy disk controllers
- - Standard floppy disk controller
- + Floppy disk drives
- - Floppy disk drive
- + Human Interface Devices
- - Logitech USB Wheel Mouse
- + Keyboards
- - Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
- + Mice and other pointing devices
- - Logitech USB Wheel Mouse
- + Modems
- - Communications cable between two computers
- + Monitors
- - Plug and Play Monitor
- - Plug and Play Monitor
- - Plug and Play Monitor
- + Network adapters
- - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller (driver 1.0.0.41)
- - Direct Parallel
- - Infrared Port
- - VMware Virtual Ethernet Adapter for VMnet1 (driver 4.2.1.0)
- - VMware Virtual Ethernet Adapter for VMnet8 (driver 4.2.1.0)
- - WAN Miniport (IP)
- - WAN Miniport (L2TP)
- - WAN Miniport (PPPOE)
- - WAN Miniport (PPTP)
- + Ports (COM & LPT)
- - Communications Port (COM1)
- + Processors
- - Intel(R) Xeon(R) CPU E5430 @ 2.66GHz
- - Intel(R) Xeon(R) CPU E5430 @ 2.66GHz
- - Intel(R) Xeon(R) CPU E5430 @ 2.66GHz
- - Intel(R) Xeon(R) CPU E5430 @ 2.66GHz
- + SCSI and RAID controllers
- - DAEMON Tools Lite Virtual SCSI Bus (driver 5.24.0.0)
- - Intel(R) Desktop/Workstation/Server Express Chipset SATA RAID Controller (driver 11.2.0.1006)
- + Sound, video and game controllers
- - AMD High Definition Audio Device (driver 5.18.0.5514)
- - Audio Codecs
- - Creative SB Audigy 4 (WDM) (driver 6.0.301.44)
- - Legacy Audio Drivers
- - Legacy Video Capture Devices
- - Media Control Devices
- - Realtek High Definition Audio (driver 5.10.0.7111)
- - Video Codecs
- + System devices
- - ACPI Fixed Feature Button
- - ACPI Power Button
- - ATK0110 ACPI UTILITY (driver 1043.2.15.37)
- - Direct memory access controller
- - High precision event timer
- - Intel(R) 4 Series Chipset PCI Express Root Port - 2E21 (driver 9.1.0.1012)
- - Intel(R) 4 Series Chipset Processor to I/O Controller - 2E20 (driver 9.1.0.1012)
- - Intel(R) 82801 PCI Bridge - 244E
- - Intel(R) 82802 Firmware Hub Device
- - Intel(R) ICH10 Family PCI Express Root Port 1 - 3A40 (driver 9.1.0.1013)
- - Intel(R) ICH10 Family PCI Express Root Port 6 - 3A4A (driver 9.1.0.1013)
- - Intel(R) ICH10 Family SMBus Controller - 3A30 (driver 1.0.0.2)
- - Intel(R) ICH10R LPC Interface Controller - 3A16 (driver 9.1.0.1013)
- - ISAPNP Read Data Port
- - Logical Disk Manager
- - Microcode Update Device
- - Microsoft ACPI-Compliant System
- - Microsoft Composite Battery
- - Microsoft System Management BIOS Driver
- - Microsoft UAA Bus Driver for High Definition Audio
- - Microsoft UAA Bus Driver for High Definition Audio
- - Motherboard resources
- - Motherboard resources
- - Motherboard resources
- - Motherboard resources
- - Motherboard resources
- - Numeric data processor
- - PCI bus
- - Plug and Play Software Device Enumerator
- - Programmable interrupt controller
- - System board
- - System board
- - System CMOS/real time clock
- - System speaker
- - System timer
- - Terminal Server Device Redirector
- - Terminal Server Keyboard Driver
- - Terminal Server Mouse Driver
- - VMware VMCI Host Device (driver 9.5.10.0)
- - Volume Manager
- + Universal Image Mounter
- - UIM Drive Backup Image Plugin (driver 6.0.3.1)
- - Universal Image Mounter Controller (driver 6.0.3.1)
- + Universal Serial Bus controllers
- - Intel(R) ICH10 Family USB Enhanced Host Controller - 3A3A (driver 9.0.0.1005)
- - Intel(R) ICH10 Family USB Enhanced Host Controller - 3A3C (driver 9.0.0.1005)
- - Intel(R) ICH10 Family USB Universal Host Controller - 3A34 (driver 9.0.0.1005)
- - Intel(R) ICH10 Family USB Universal Host Controller - 3A35 (driver 9.0.0.1005)
- - Intel(R) ICH10 Family USB Universal Host Controller - 3A36 (driver 9.0.0.1005)
- - Intel(R) ICH10 Family USB Universal Host Controller - 3A37 (driver 9.0.0.1005)
- - Intel(R) ICH10 Family USB Universal Host Controller - 3A38 (driver 9.0.0.1005)
- - Intel(R) ICH10 Family USB Universal Host Controller - 3A39 (driver 9.0.0.1005)
- - USB Root Hub
- - USB Root Hub
- - USB Root Hub
- - USB Root Hub
- - USB Root Hub
- - USB Root Hub
- - USB Root Hub
- - USB Root Hub
- disassembling:
- [...]
- 4a40b76f 089 add esi, 1
- 4a40b772 jmp loc_4a40b6fd
- 4a40b774 093 mov dword ptr [ebp-4], $fffffffe
- 4a40b77b call +$40 ($4a40b7c0)
- 4a40b780 098 mov esi, [ebp-$28]
- 4a40b783 test esi, esi
- 4a40b785 jz loc_4a40b7e6
- 4a40b787 100 mov edi, [ebp+8]
- 4a40b78a push edi
- 4a40b78b call dword ptr [$4a4ed59c] ; IsWindowUnicode (USER32.dll)
- 4a40b791 101 mov edx, [ebp+$14]
- 4a40b794 mov ecx, [ebp+$c]
- 4a40b797 push edx
- 4a40b798 100 test eax, eax
- 4a40b79a 101 mov eax, [ebp+$10]
- 4a40b79d push eax
- 4a40b79e push ecx
- 4a40b79f push edi
- 4a40b7a0 push esi
- 4a40b7a1 100 jz loc_4a40b7cc
- 4a40b7a3 101 > call dword ptr [$4a4ed540] ; CallWindowProcW (USER32.dll)
- 4a40b7a9 107 mov ecx, [ebp-$10]
- 4a40b7ac mov fs:[0], ecx
- 4a40b7b3 pop ecx
- 4a40b7b4 pop edi
- 4a40b7b5 pop esi
- 4a40b7b6 pop ebx
- 4a40b7b7 mov esp, ebp
- 4a40b7b9 pop ebp
- 4a40b7ba ret $10
- 4a40b7cc 103 call dword ptr [$4a4ed544] ; CallWindowProcA (USER32.dll)
- 4a40b7d2 107 mov ecx, [ebp-$10]
- 4a40b7d5 mov fs:[0], ecx
- 4a40b7dc pop ecx
- 4a40b7dd pop edi
- 4a40b7de pop esi
- 4a40b7df pop ebx
- 4a40b7e0 mov esp, ebp
- 4a40b7e2 pop ebp
- 4a40b7e3 ret $10
- 4a40b7e6 106 xor eax, eax
- [...]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement