API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 6th, 2011
156
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 25.59 KB | None | 0 0
raw download clone embed print report
  1. date/time : 2011-07-06, 23:29:55, 593ms
  2. computer name : FEDIA22-162B7A5
  3. user name : Fedia22 <admin>
  4. registered owner : Fedia22
  5. operating system : Windows XP Service Pack 3 build 2600
  6. system language : Russian
  7. system up time : 8 hours 46 minutes
  8. program up time : 1 minute 4 seconds
  9. processor : AMD Sempron(tm) Processor 3000+
  10. physical memory : 651/1534 MB (free/total)
  11. free disk space : (C:) 2,73 GB
  12. display mode : 1280x1024, 32 bit
  13. process id : $d3c
  14. allocated memory : 32,75 MB
  15. executable : qip.exe
  16. exec. date/time : 2011-06-24 15:17
  17. version : 3.0.0.5768
  18. compiled with : Delphi 7
  19. madExcept version : 3.0k
  20. contact name : Fedia22
  21. contact email : Fedia22@fedia22.ru
  22. callstack crc : $00000000, $132085cf, $b927acdd
  23. exception number : 1
  24. exception class : EAccessViolation
  25. exception message : Access violation at address 00000000. Read of address 00000000.
  26.  
  27. thread $13ec:
  28. 00000000 +000 ???
  29. 0069e906 +152 qip.exe OverbyteIcsHttpProt 2043 +38 THttpCli.Abort
  30. 006fd2d9 +031 qip.exe u_bb_ImagesDM 1178 +3 THttpDM.AbortThread
  31. 006fcec5 +019 qip.exe u_bb_ImagesDM 1060 +2 TCustomDM.Abort
  32. 006fe9e7 +11f qip.exe u_bb_Images 827 +42 TThinGraphic.SetStatus
  33. 006ff35a +01a qip.exe u_bb_Images 1053 +4 TThinGraphic.ReleaseDM
  34. 006fe2a1 +049 qip.exe u_bb_Images 569 +12 TThinGraphic.Destroy
  35. 006fe1c4 +034 qip.exe u_bb_Images 539 +7 TThinGraphic._Release
  36. 00705597 +027 qip.exe RVItem 2961 +5 TRVGraphicItemInfo.FreeAndNilImage
  37. 0070553c +010 qip.exe RVItem 2945 +1 TRVGraphicItemInfo.Destroy
  38. 0090ff79 +061 qip.exe u_bb_rvControls 318 +19 TRVGraphicItemInfoBB.Destroy
  39. 00403cec +008 qip.exe System 8393 +1 TObject.Free
  40. 006515da +046 qip.exe CRVData 1843 +12 TCustomRVData.InternalFreeItem
  41. 0064b01f +00b qip.exe CRVFData 6792 +5 TCustomRVFormattedData.InternalFreeItem
  42. 00651653 +06f qip.exe CRVData 1854 +5 TCustomRVData.FreeItem
  43. 00651702 +086 qip.exe CRVData 1871 +11 TCustomRVData.Clear
  44. 0063db2a +052 qip.exe CRVFData 860 +7 TCustomRVFormattedData.Clear
  45. 0065038a +012 qip.exe CRVData 1080 +1 TCustomRVData.Destroy
  46. 0063d918 +03c qip.exe CRVFData 799 +7 TCustomRVFormattedData.Destroy
  47. 00611c14 +030 qip.exe RVTable 2985 +4 TRVTableCellData.Destroy
  48. 00403cec +008 qip.exe System 8393 +1 TObject.Free
  49. 005c9529 +019 qip.exe RVClasses 144 +2 TRVList.Clear
  50. 005c9577 +00f qip.exe RVClasses 164 +1 TRVList.Destroy
  51. 00613892 +012 qip.exe RVTable 3924 +1 TRVTableRows.Destroy
  52. 00403cec +008 qip.exe System 8393 +1 TObject.Free
  53. 00616760 +018 qip.exe RVTable 5442 +2 TRVTableItemInfo.Destroy
  54. 00403cec +008 qip.exe System 8393 +1 TObject.Free
  55. 006515da +046 qip.exe CRVData 1843 +12 TCustomRVData.InternalFreeItem
  56. 0064b01f +00b qip.exe CRVFData 6792 +5 TCustomRVFormattedData.InternalFreeItem
  57. 00651653 +06f qip.exe CRVData 1854 +5 TCustomRVData.FreeItem
  58. 00651702 +086 qip.exe CRVData 1871 +11 TCustomRVData.Clear
  59. 0063db2a +052 qip.exe CRVFData 860 +7 TCustomRVFormattedData.Clear
  60. 0063ba77 +03b qip.exe RVRVData 1231 +13 TRichViewRVData.Clear
  61. 0062ba50 +018 qip.exe RichView 1456 +2 TCustomRichView.Clear
  62. 0062b79b +01f qip.exe RichView 1347 +10 TCustomRichView.Destroy
  63. 0062f2a2 +026 qip.exe RichView 4301 +5 TCustomRichView2.Destroy
  64. 00764f7c +01c qip.exe RVSmartScroll 184 +2 TRichView.Destroy
  65. 004e3c9c +0b0 qip.exe Controls 5429 +16 TWinControl.Destroy
  66. 004c4010 +028 qip.exe Forms 2076 +3 TScrollingWinControl.Destroy
  67. 004c4c03 +0ab qip.exe Forms 2640 +10 TCustomForm.Destroy
  68. 00403cec +008 qip.exe System 8393 +1 TObject.Free
  69. 004c8868 +000 qip.exe Forms 4568 +0 TCustomForm.CMRelease
  70. 004e220b +1df qip.exe Controls 4645 +53 TControl.WndProc
  71. 004e5f1a +18e qip.exe Controls 6342 +33 TWinControl.WndProc
  72. 004c5b39 +421 qip.exe Forms 3099 +103 TCustomForm.WndProc
  73. 0052086d +085 qip.exe TntControls 679 +19 TWinControlTrap.WindowProc
  74. 004e5aec +034 qip.exe Controls 6237 +3 TWinControl.MainWndProc
  75. 0047b2f4 +014 qip.exe Classes 10966 +8 StdWndProc
  76. 7e37a034 +016 user32.dll CallWindowProcW
  77. 005204a0 +048 qip.exe TntControls 564 +12 TWinControlTrap.Win32Proc
  78. 0047b2f4 +014 qip.exe Classes 10966 +8 StdWndProc
  79. 7e3696c2 +00a user32.dll DispatchMessageA
  80. 004cc053 +083 qip.exe Forms 6874 +13 TApplication.ProcessMessage
  81. 004cc08a +00a qip.exe Forms 6893 +1 TApplication.HandleMessage
  82. 004cc2aa +096 qip.exe Forms 6977 +16 TApplication.Run
  83. 0092cdb3 +15f qip.exe qip 208 +60 initialization
  84.  
  85. thread $10a0:
  86. 7c90df48 +a ntdll.dll NtWaitForMultipleObjects
  87.  
  88. thread $7d0 (TPainterThread): <suspended>
  89. 005b2b6e +3e qip.exe ImagingComponents 2219 +5 TPainterThread.Create
  90.  
  91. thread $724:
  92. 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
  93. 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
  94. 7e3695f3 +00 user32.dll MsgWaitForMultipleObjectsEx
  95. 7e3696a3 +1a user32.dll MsgWaitForMultipleObjects
  96. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  97. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  98. >> created by main thread ($13ec) at:
  99. 4ebf7b7f +00 gdiplus.dll
  100.  
  101. thread $998 (TPainterThread): <suspended>
  102. 03b847bb MRA.dll
  103.  
  104. thread $17c: <priority:1>
  105. 7c90da48 +0a ntdll.dll NtRemoveIoCompletion
  106. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  107. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  108. >> created by thread $34c at:
  109. 71a3d926 +00 mswsock.dll
  110.  
  111. thread $f50 (TShowIconThread): <suspended>
  112. 7c90de48 +0a ntdll.dll NtSuspendThread
  113. 7c83973e +0c kernel32.dll SuspendThread
  114. 004799f1 +31 qip.exe Classes 9648 +5 TThread.Suspend
  115. 0074acb2 +d2 qip.exe u_trayicon 114 +25 TShowIconThread.Execute
  116. 004794fa +36 qip.exe Classes 9372 +7 ThreadProc
  117. 00404bb8 +28 qip.exe System 11562 +33 ThreadWrapper
  118. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  119. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  120. >> created by main thread ($13ec) at:
  121. 0074ad64 +70 qip.exe u_trayicon 140 +11 TTrayIcon.Create
  122.  
  123. thread $f7c:
  124. 7c90df58 +0a ntdll.dll NtWaitForSingleObject
  125. 7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
  126. 7c80253d +0d kernel32.dll WaitForSingleObject
  127. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  128. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  129. >> created by main thread ($13ec) at:
  130. 71a9d374 +00 WS2_32.dll
  131.  
  132. thread $103c: <priority:2>
  133. 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
  134. 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
  135. 7c80a110 +13 kernel32.dll WaitForMultipleObjects
  136. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  137. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  138. >> created by main thread ($13ec) at:
  139. 04ab4593 +00 voip.dll
  140.  
  141. thread $78c:
  142. 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
  143. 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
  144. 7c80a110 +13 kernel32.dll WaitForMultipleObjects
  145. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  146. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  147. >> created by main thread ($13ec) at:
  148. 04ab4593 +00 voip.dll
  149.  
  150. thread $17f8: <priority:15>
  151. 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
  152. 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
  153. 7c80a110 +13 kernel32.dll WaitForMultipleObjects
  154. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  155. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  156. >> created by main thread ($13ec) at:
  157. 72ce328c +00 wdmaud.drv
  158.  
  159. thread $4b4:
  160. 7c90daa8 +0a ntdll.dll NtReplyWaitReceivePortEx
  161. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  162. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  163. >> created by main thread ($13ec) at:
  164. 77e7df2e +00 RPCRT4.dll
  165.  
  166. thread $f58:
  167. 7c90d218 +0a ntdll.dll NtDelayExecution
  168. 7c8023eb +4b kernel32.dll SleepEx
  169. 7c802450 +0a kernel32.dll Sleep
  170. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  171. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  172. >> created by main thread ($13ec) at:
  173. 7751fd64 +00 ole32.dll
  174.  
  175. thread $1404:
  176. 7c90daa8 +0a ntdll.dll NtReplyWaitReceivePortEx
  177. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  178. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  179. >> created by thread $4b4 at:
  180. 77e7df2e +00 RPCRT4.dll
  181.  
  182. thread $7ac: <priority:-1>
  183. 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
  184. 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
  185. 7c80a110 +13 kernel32.dll WaitForMultipleObjects
  186. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  187. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  188. >> created by main thread ($13ec) at:
  189. 04ab4593 +00 voip.dll
  190.  
  191. thread $136c:
  192. 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
  193. 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
  194. 7e3695f3 +00 user32.dll MsgWaitForMultipleObjectsEx
  195. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  196. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  197. >> created by main thread ($13ec) at:
  198. 04ab4593 +00 voip.dll
  199.  
  200. thread $145c:
  201. 7e3691ec +26 user32.dll GetMessageW
  202. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  203. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  204. >> created by main thread ($13ec) at:
  205. 04ab28a5 +00 voip.dll
  206.  
  207. thread $43c:
  208. 7c90da48 +0a ntdll.dll NtRemoveIoCompletion
  209. 7c80a7e0 +23 kernel32.dll GetQueuedCompletionStatus
  210. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  211. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  212. >> created by main thread ($13ec) at:
  213. 03fc5015 +00 SIP.dll
  214.  
  215. thread $de8:
  216. 7c90da48 +0a ntdll.dll NtRemoveIoCompletion
  217. 7c80a7e0 +23 kernel32.dll GetQueuedCompletionStatus
  218. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  219. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  220. >> created by main thread ($13ec) at:
  221. 03fc5015 +00 SIP.dll
  222.  
  223. thread $a20 (TShowIconThread): <suspended>
  224. 03b847bb MRA.dll
  225.  
  226. thread $17b8 (TWorkerThread):
  227. 7e37f406 +44 user32.dll SendMessageA
  228. 0054471a +3a qip.exe VirtualTrees 5197 +2 TWorkerThread.ChangeTreeStates
  229. 005447e7 +c3 qip.exe VirtualTrees 5238 +28 TWorkerThread.Execute
  230. 004513af +2b qip.exe madExcept HookedTThreadExecute
  231. 004794fa +36 qip.exe Classes 9372 +7 ThreadProc
  232. 00404bb8 +28 qip.exe System 11562 +33 ThreadWrapper
  233. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  234. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  235. >> created by main thread ($13ec) at:
  236. 00544682 +16 qip.exe VirtualTrees 5176 +1 TWorkerThread.Create
  237.  
  238. thread $7e4:
  239. 7c90d218 +0a ntdll.dll NtDelayExecution
  240. 7c8023eb +4b kernel32.dll SleepEx
  241. 7c802450 +0a kernel32.dll Sleep
  242. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  243. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  244. >> created by main thread ($13ec) at:
  245. 03a37984 +00 Jabber.dll
  246.  
  247. thread $ae8:
  248. 7c90d218 +0a ntdll.dll NtDelayExecution
  249. 7c8023eb +4b kernel32.dll SleepEx
  250. 7c802450 +0a kernel32.dll Sleep
  251. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  252. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  253. >> created by main thread ($13ec) at:
  254. 03a37984 +00 Jabber.dll
  255.  
  256. thread $e28:
  257. 7c90d218 +0a ntdll.dll NtDelayExecution
  258. 7c8023eb +4b kernel32.dll SleepEx
  259. 7c802450 +0a kernel32.dll Sleep
  260. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  261. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  262. >> created by main thread ($13ec) at:
  263. 03a37984 +00 Jabber.dll
  264.  
  265. thread $4fc:
  266. 7c90d218 +0a ntdll.dll NtDelayExecution
  267. 7c8023eb +4b kernel32.dll SleepEx
  268. 7c802450 +0a kernel32.dll Sleep
  269. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  270. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  271. >> created by main thread ($13ec) at:
  272. 03a37984 +00 Jabber.dll
  273.  
  274. thread $1144:
  275. 7c90df58 +0a ntdll.dll NtWaitForSingleObject
  276. 71a94d13 +5e WS2_32.dll WSARecv
  277. 71ab2e9e +2e wsock32.dll recv
  278. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  279. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  280. >> created by main thread ($13ec) at:
  281. 03a37b7d +00 Jabber.dll
  282.  
  283. thread $12dc:
  284. 7c90d218 +a ntdll.dll NtDelayExecution
  285.  
  286. thread $1448:
  287. 7c90da48 +a ntdll.dll NtRemoveIoCompletion
  288.  
  289. thread $13cc:
  290. 7c90df48 +0a ntdll.dll NtWaitForMultipleObjects
  291. 7c80958a +00 kernel32.dll WaitForMultipleObjectsEx
  292. 7c80a110 +13 kernel32.dll WaitForMultipleObjects
  293. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  294. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  295. >> created by thread $1144 at:
  296. 03a37b7d +00 Jabber.dll
  297.  
  298. thread $e9c:
  299. 7c90df48 +a ntdll.dll NtWaitForMultipleObjects
  300.  
  301. thread $cc8:
  302. 7c90df48 +00a ntdll.dll NtWaitForMultipleObjects
  303. 7c80958a +000 kernel32.dll WaitForMultipleObjectsEx
  304. 7c80a110 +013 kernel32.dll WaitForMultipleObjects
  305. 00451291 +00d qip.exe madExcept CallThreadProcSafe
  306. 004512fb +037 qip.exe madExcept ThreadExceptFrame
  307. >> created by thread $b80 at:
  308. 769a887a +273 USERENV.dll RegisterGPNotification
  309.  
  310. thread $adc:
  311. 7c90d218 +0a ntdll.dll NtDelayExecution
  312. 7c8023eb +4b kernel32.dll SleepEx
  313. 7c802450 +0a kernel32.dll Sleep
  314. 00451291 +0d qip.exe madExcept CallThreadProcSafe
  315. 004512fb +37 qip.exe madExcept ThreadExceptFrame
  316. >> created by thread $b80 at:
  317. 4d56cadd +00 WINHTTP.dll
  318.  
  319. thread $ff4:
  320. >> stack not accessible
  321.  
  322. thread $10c4:
  323. >> stack not accessible
  324.  
  325. modules:
  326. 00340000 Normaliz.dll 6.0.5441.0 C:\WINDOWS\system32
  327. 00400000 qip.exe 3.0.0.5768 C:\Program Files\QIP 2010
  328. 02990000 WebWindow.dll C:\Program Files\QIP 2010\Core
  329. 036f0000 InfICQ.dll C:\Program Files\QIP 2010\Protos\InfICQ
  330. 03a30000 Jabber.dll 0.1.1.15 C:\Program Files\QIP 2010\Protos\Jabber
  331. 03b60000 MRA.dll 1.0.0.4 C:\Program Files\QIP 2010\Protos\MRA
  332. 03fa0000 pics.dll C:\Program Files\QIP 2010\Protos\MRA
  333. 03fb0000 SIP.dll 0.1.0.1 C:\Program Files\QIP 2010\Protos\SIP
  334. 040b0000 Social.dll C:\Program Files\QIP 2010\Protos\Social
  335. 042f0000 XIMSS.dll 0.1.4.4 C:\Program Files\QIP 2010\Protos\XIMSS
  336. 04540000 pcaplsp.dll 3.2.4.0 C:\WINDOWS\system32
  337. 04a70000 voip.dll C:\Program Files\QIP 2010\Core
  338. 05590000 xpsp2res.dll 5.1.2600.5512 C:\WINDOWS\system32
  339. 10000000 vksaver3.dll 3.0.0.2 C:\DOCUME~1\ALLUSE~1\APPLIC~1\VKSaver
  340. 12220000 OPENLIBEAY32.dll 0.9.8.11 C:\Program Files\QIP 2010\Core
  341. 12440000 OPENSSLEAY32.DLL 0.9.8.11 C:\Program Files\QIP 2010\Core
  342. 16080000 mdnsNSP.dll 1.0.3.1 C:\Program Files\Bonjour
  343. 1a400000 urlmon.dll 8.0.6001.18702 C:\WINDOWS\system32
  344. 4d550000 WINHTTP.dll 5.1.2600.5868 C:\WINDOWS\system32
  345. 4ebe0000 gdiplus.dll 5.2.6001.22319 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df
  346. 58be0000 icm32.dll 5.1.2600.5512 C:\WINDOWS\system32
  347. 58f10000 wship6.dll 5.1.2600.5512 C:\WINDOWS\System32
  348. 5b260000 uxtheme.dll 6.0.2900.5512 C:\WINDOWS\system32
  349. 5bd50000 NETAPI32.dll 5.1.2600.5694 C:\WINDOWS\system32
  350. 5dca0000 iertutil.dll 8.0.6001.18702 C:\WINDOWS\system32
  351. 5f2f0000 olepro32.dll 5.1.2600.5512 C:\WINDOWS\system32
  352. 61880000 oleacc.dll 7.0.2600.5884 C:\WINDOWS\system32
  353. 63000000 wininet.dll 8.0.6001.18702 C:\WINDOWS\system32
  354. 68000000 rsaenh.dll 5.1.2600.5507 C:\WINDOWS\system32
  355. 68100000 dssenh.dll 5.1.2600.5507 C:\WINDOWS\system32
  356. 698b0000 hnetcfg.dll 5.1.2600.5512 C:\WINDOWS\system32
  357. 71a30000 mswsock.dll 5.1.2600.5625 C:\WINDOWS\System32
  358. 71a70000 wshtcpip.dll 5.1.2600.5512 C:\WINDOWS\System32
  359. 71a80000 WS2HELP.dll 5.1.2600.5512 C:\WINDOWS\system32
  360. 71a90000 WS2_32.dll 5.1.2600.5512 C:\WINDOWS\system32
  361. 71ab0000 wsock32.dll 5.1.2600.5512 C:\WINDOWS\system32
  362. 71f60000 security.dll 5.1.2600.5512 C:\WINDOWS\system32
  363. 72290000 sensapi.dll 5.1.2600.5512 C:\WINDOWS\system32
  364. 72cd0000 msacm32.drv 5.1.2600.0 C:\WINDOWS\system32
  365. 72ce0000 wdmaud.drv 5.1.2600.5512 C:\WINDOWS\system32
  366. 72fc0000 winspool.drv 5.1.2600.5512 C:\WINDOWS\system32
  367. 73670000 msdmo.dll 6.5.2600.5512 C:\WINDOWS\system32
  368. 73720000 DDRAW.dll 5.3.2600.5512 C:\WINDOWS\system32
  369. 73af0000 mscms.dll 5.1.2600.5627 C:\WINDOWS\system32
  370. 73b40000 avicap32.dll 5.1.2600.0 C:\WINDOWS\system32
  371. 73b80000 DCIMAN32.dll 5.1.2600.5512 C:\WINDOWS\system32
  372. 73ed0000 dsound.dll 5.3.2600.5512 C:\WINDOWS\system32
  373. 746e0000 MSCTF.dll 5.1.2600.5512 C:\WINDOWS\system32
  374. 75310000 msctfime.ime 5.1.2600.5768 C:\WINDOWS\system32
  375. 75a40000 MSVFW32.dll 5.1.2600.5512 C:\WINDOWS\system32
  376. 76350000 msimg32.dll 5.1.2600.5512 C:\WINDOWS\system32
  377. 76360000 imm32.dll 5.1.2600.5512 C:\WINDOWS\system32
  378. 76380000 comdlg32.dll 6.0.2900.5512 C:\WINDOWS\system32
  379. 765b0000 devenum.dll 6.5.2600.5512 C:\WINDOWS\system32
  380. 76770000 cryptdll.dll 5.1.2600.5512 C:\WINDOWS\system32
  381. 767d0000 schannel.dll 5.1.2600.5834 C:\WINDOWS\system32
  382. 769a0000 USERENV.dll 5.1.2600.5512 C:\WINDOWS\system32
  383. 76b20000 winmm.dll 5.1.2600.5512 C:\WINDOWS\system32
  384. 76c20000 WINTRUST.dll 5.131.2600.5709 C:\WINDOWS\system32
  385. 76c80000 IMAGEHLP.dll 5.1.2600.5512 C:\WINDOWS\system32
  386. 76d50000 iphlpapi.dll 5.1.2600.5512 C:\WINDOWS\system32
  387. 76e70000 rtutils.dll 5.1.2600.5512 C:\WINDOWS\system32
  388. 76e80000 rasman.dll 5.1.2600.5512 C:\WINDOWS\system32
  389. 76ea0000 TAPI32.dll 5.1.2600.5512 C:\WINDOWS\system32
  390. 76ed0000 RASAPI32.dll 5.1.2600.5512 C:\WINDOWS\system32
  391. 76f10000 DNSAPI.dll 5.1.2600.5797 C:\WINDOWS\system32
  392. 76f50000 WLDAP32.dll 5.1.2600.5512 C:\WINDOWS\system32
  393. 76fa0000 winrnr.dll 5.1.2600.5512 C:\WINDOWS\System32
  394. 76fb0000 rasadhlp.dll 5.1.2600.5512 C:\WINDOWS\system32
  395. 76fc0000 CLBCATQ.DLL 2001.12.4414.700 C:\WINDOWS\system32
  396. 77040000 COMRes.dll 2001.12.4414.700 C:\WINDOWS\system32
  397. 77110000 oleaut32.dll 5.1.2600.5512 C:\WINDOWS\system32
  398. 773c0000 comctl32.dll 6.0.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83
  399. 774d0000 ole32.dll 5.1.2600.5512 C:\WINDOWS\system32
  400. 77910000 setupapi.dll 5.1.2600.5512 C:\WINDOWS\system32
  401. 77a70000 CRYPT32.dll 5.131.2600.5709 C:\WINDOWS\system32
  402. 77b10000 MSASN1.dll 5.1.2600.5875 C:\WINDOWS\system32
  403. 77bc0000 midimap.dll 5.1.2600.5512 C:\WINDOWS\system32
  404. 77bd0000 MSACM32.dll 5.1.2600.5512 C:\WINDOWS\system32
  405. 77bf0000 version.dll 5.1.2600.5512 C:\WINDOWS\system32
  406. 77c00000 msvcrt.dll 7.0.2600.5512 C:\WINDOWS\system32
  407. 77c60000 msv1_0.dll 5.1.2600.5876 C:\WINDOWS\system32
  408. 77dc0000 advapi32.dll 5.1.2600.5755 C:\WINDOWS\system32
  409. 77e70000 RPCRT4.dll 5.1.2600.5795 C:\WINDOWS\system32
  410. 77f10000 GDI32.dll 5.1.2600.5698 C:\WINDOWS\system32
  411. 77f60000 SHLWAPI.dll 6.0.2900.5512 C:\WINDOWS\system32
  412. 77fe0000 Secur32.dll 5.1.2600.5834 C:\WINDOWS\system32
  413. 7c800000 kernel32.dll 5.1.2600.5781 C:\WINDOWS\system32
  414. 7c900000 ntdll.dll 5.1.2600.5755 C:\WINDOWS\system32
  415. 7c9c0000 shell32.dll 6.0.2900.5853 C:\WINDOWS\system32
  416. 7e360000 user32.dll 5.1.2600.5512 C:\WINDOWS\system32
  417.  
  418. processes:
  419. 000 Idle 0 0
  420. 004 System 0 0 normal
  421. 548 smss.exe 0 0 normal C:\WINDOWS\system32
  422. 5e8 csrss.exe 0 0
  423. 618 winlogon.exe 49 15 high C:\WINDOWS\system32
  424. 644 services.exe 4 2 normal C:\WINDOWS\system32
  425. 650 lsass.exe 4 2 normal C:\WINDOWS\system32
  426. 6f8 Ati2evxx.exe 11 6 normal C:\WINDOWS\system32
  427. 70c svchost.exe 4 1 normal C:\WINDOWS\system32
  428. 768 svchost.exe 0 0
  429. 0e4 svchost.exe 11 40 normal C:\WINDOWS\System32
  430. 150 svchost.exe 0 0
  431. 27c Ati2evxx.exe 11 6 normal C:\WINDOWS\system32
  432. 2a8 svchost.exe 0 0
  433. 380 spoolsv.exe 4 5 normal C:\WINDOWS\system32
  434. 5dc svchost.exe 0 0
  435. 690 avp.exe 32 34 normal C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011
  436. 680 mDNSResponder.exe 4 2 normal C:\Program Files\Bonjour
  437. 0b0 G6FTPSERVER.EXE 5 7 normal C:\Program Files\Gene6 FTP Server
  438. 414 nlsvc.exe 4 3 normal C:\Program Files\NetLimiter 3
  439. 5b0 PnkBstrA.exe 4 1 normal C:\WINDOWS\system32
  440. 114 svchost.exe 9 5 normal C:\WINDOWS\system32
  441. a58 alg.exe 0 0
  442. d70 Explorer.EXE 354 142 normal C:\WINDOWS
  443. 9b0 avp.exe 50 31 normal C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011
  444. ad0 MAgent.exe 671 278 normal C:\Program Files\Mail.Ru\Agent
  445. b94 vsnp2std.exe 30 29 normal C:\WINDOWS
  446. b54 ctfmon.exe 28 11 normal C:\WINDOWS\system32
  447. 878 uTorrent.exe 121 41 normal C:\Program Files\uTorrent
  448. ca0 DTLite.exe 154 54 normal C:\Program Files\DAEMON Tools Lite
  449. d40 MOM.exe 12 16 normal C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
  450. 19c Dropbox.exe 51 28 normal C:\Documents and Settings\Fedia22\Application Data\Dropbox\bin
  451. b10 ccc.exe 49 56 normal C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
  452. ccc dmaster.exe 1787 702 normal C:\Program Files\Download Master
  453. 0cc opera.exe 148 71 normal C:\Program Files\Opera
  454. d3c qip.exe 1599 347 normal C:\Program Files\QIP 2010
  455.  
  456. active control:
  457. TVirtualDrawTree "ContactList" []
  458. TInfuPanel "PanelContainer" [, FreeNotification]
  459. TfrmCL "frmCL" [, FreeNotification]
  460.  
  461. memory info:
  462. - AvailPageFile: Integer = -1827880960
  463. - AvailPhysicalMemory: Integer = 678395904
  464. - AvailVirtualMemory: Integer = 1982988288
  465. - MemoryLoad: Integer = 57
  466. - TotalPageFile: Integer = -704425984
  467. - TotalPhysicalMemory: Integer = 1608957952
  468. - TotalVirtualMemory: Integer = 2147352576
  469.  
  470. cpu registers:
  471. eax = 082a0204
  472. ebx = 00000000
  473. ecx = 082a0200
  474. edx = 00000000
  475. esi = 082a0000
  476. edi = 08297e20
  477. eip = 00000000
  478. esp = 0012f854
  479. ebp = 0012f87c
  480.  
  481. stack dump:
  482. 0012f854 0c e9 69 00 20 7e 29 08 - 00 00 2a 08 00 00 00 00 ..i..~)...*.....
  483. 0012f864 04 f7 74 00 01 00 00 00 - 87 01 75 00 34 5b 40 00 ..t.......u.4[@.
  484. 0012f874 8b 3e 40 00 04 02 2a 08 - 98 f8 12 00 de d2 6f 00 .>@...*.......o.
  485. 0012f884 94 16 2a 08 70 7d 29 08 - ff ff ff ff c8 ce 6f 00 ..*.p}).......o.
  486. 0012f894 70 7d 29 08 c4 f8 12 00 - ea e9 6f 00 20 7e 29 08 p}).......o..~).
  487. 0012f8a4 30 f9 12 00 c4 44 40 00 - c4 f8 12 00 94 16 2a 08 0....D@.......*.
  488. 0012f8b4 70 7d 29 08 70 7d 29 08 - 00 00 00 00 00 00 00 00 p}).p}).........
  489. 0012f8c4 e8 f8 12 00 5f f3 6f 00 - 01 00 00 00 a6 e2 6f 00 ...._.o.......o.
  490. 0012f8d4 00 00 00 00 70 7d 29 08 - c7 e1 6f 00 94 16 2a 08 ....p})...o...*.
  491. 0012f8e4 e4 16 2a 08 54 f9 12 00 - 9c 55 70 00 70 7d 29 08 ..*.T....Up.p}).
  492. 0012f8f4 00 20 3e 00 41 55 70 00 - 94 16 2a 08 01 20 3e 00 ..>.AUp...*...>.
  493. 0012f904 7e ff 90 00 d0 79 29 08 - 01 00 00 01 ef 3c 40 00 ~....y)......<@.
  494. 0012f914 df 15 65 00 d0 79 29 08 - b0 34 61 00 2c c0 60 00 ..e..y)..4a.,.`.
  495. 0012f924 24 b0 64 00 2c c0 60 00 - 56 16 65 00 5c f9 12 00 $.d.,.`.V.e.\...
  496. 0012f934 c4 44 40 00 54 f9 12 00 - d0 79 29 08 03 00 00 00 .D@.T....y).....
  497. 0012f944 01 00 00 00 00 00 00 00 - 94 16 2a 08 68 79 29 01 ..........*.hy).
  498. 0012f954 78 f9 12 00 07 17 65 00 - 80 f9 12 00 c4 44 40 00 x.....e......D@.
  499. 0012f964 78 f9 12 00 74 2b 61 00 - 00 00 00 00 d0 79 29 01 x...t+a......y).
  500. 0012f974 d0 79 29 08 98 f9 12 00 - 2f db 63 00 40 fa 12 00 .y)...../.c.@...
  501. 0012f984 c4 44 40 00 98 f9 12 00 - d8 da 63 00 f1 3e 40 00 .D@.......c..>@.
  502.  
  503. disassembling:
  504. [...]
  505. 0069e8df 2040 xor ecx, ecx
  506. 0069e8e1 mov edx, [ebp-4]
  507. 0069e8e4 mov eax, [ebp-4]
  508. 0069e8e7 mov ebx, [eax]
  509. 0069e8e9 call dword ptr [ebx+$dc]
  510. 0069e8e9
  511. 0069e8ef jmp loc_69e8ff
  512. 0069e8ef
  513. 0069e8ef ; ---------------------------------------------------------
  514. 0069e8ef
  515. 0069e8f1 loc_69e8f1:
  516. 0069e8f1 2042 mov eax, [ebp-4]
  517. 0069e8f4 mov eax, [eax+$6c]
  518. 0069e8f7 mov edx, [eax]
  519. 0069e8f9 call dword ptr [edx+$120]
  520. 0069e8f9
  521. 0069e8ff loc_69e8ff:
  522. 0069e8ff 2043 xor edx, edx
  523. 0069e901 mov eax, [ebp-4]
  524. 0069e904 mov ecx, [eax]
  525. 0069e906 > call dword ptr [ecx+$f8]
  526. 0069e906
  527. 0069e90c loc_69e90c:
  528. 0069e90c 2044 pop edi
  529. 0069e90d pop esi
  530. 0069e90e pop ebx
  531. 0069e90f mov esp, ebp
  532. 0069e911 pop ebp
  533. 0069e912 ret
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!