Results 1 to 9 of 9

Thread: , ?

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1
    Registered User
    Join Date: Oct:2008
    Location: Plowdiw
    Posts: 12

    , ?

    , ( ) , : - 20 ,
    , - . . . , ( )

  2. #2
    Registered User
    Join Date: Mar:2005
    Location: Sofia
    Posts: 183
    SpySweeper - .
    , , . ( )!
    , ...

  3. #3
    Hacker
    Join Date: Oct:2008
    Location: localhost
    Posts: 150
    HiJackThis
    Let 7he gr0ovE r3LeaSe y0ur m!nd !

  4. #4
    Registered User
    Join Date: Oct:2008
    Location: Plowdiw
    Posts: 12
    4 , :

    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\D-Tools\daemon.exe
    C:\Program Files\Google\Google Talk\googletalk.exe
    D:\Programs\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    C:\WINDOWS\Datecs\Flex2K.exe
    D:\Programs\New Folder\NkbMonitor.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\wbem\wmiapsrv.exe
    C:\WINDOWS\System32\wuauclt.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    D:\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.atcomet.com/b/
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\Programs\Bit Comet\BitComet\tools\BitCometBHO_1.2.6.2 6.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\Programs\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.8 05.4472\swg.dll
    O2 - BHO: Class - {D49792CC-8DC7-3486-5C0A-ED97D10E10D8} - (no file)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt. dll
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
    O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - D:\Programs\FlashGet\fgiebar.dll
    O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
    O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\System32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
    O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
    O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
    O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
    O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
    O4 - HKLM\..\Run: [avast!] D:\Programs\avast\ashDisp.exe
    O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 - HKCU\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskb arInit
    O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
    O4 - HKCU\..\Run: [Explorer] C:\WINDOWS\System32\iexplorer.exe en
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Programs\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
    O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    O4 - Global Startup: FlexType 2K.lnk = C:\WINDOWS\Datecs\Flex2K.exe
    O4 - Global Startup: NkbMonitor.exe.lnk = D:\Programs\New Folder\NkbMonitor.exe
    O8 - Extra context menu item: &D&ownload &with BitComet - res://D:\Programs\Bit Comet\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: &D&ownload all video with BitComet - res://D:\Programs\Bit Comet\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: &D&ownload all with BitComet - res://D:\Programs\Bit Comet\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
    O8 - Extra context menu item: Download All by FlashGet - D:\Programs\FlashGet\jc_all.htm
    O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
    O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
    O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.d ll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.d ll
    O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://D:\Programs\Bit Comet\BitComet\tools\BitCometBHO_1.2.6.2 6.dll/206 (file missing)
    O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\Programs\FlashGet\flashget.exe
    O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\Programs\FlashGet\flashget.exe
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\Programs\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\Programs\Spybot - Search & Destroy\SDHelper.dll
    O16 - DPF: Yahoo! Pool 2 - http://download.games.yahoo.com/game...s/y/pote_x.cab
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) -
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1122757425296
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GO333C~1\GOEC62~1.DLL
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Autodata Limited License Service - Unknown owner - C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
    O23 - Service: Google Desktop 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe

    --
    End of file - 8130 bytes

  5. #5
    Registered User
    Join Date: Oct:2008
    Location: Plowdiw
    Posts: 12
    - :

    An unexpected error has been detected by HotSpot Virtual Machine:
    #
    # Internal Error (4A4E490E4350500281), pid=2616, tid=208
    #
    # Java VM: Java HotSpot(TM) Client VM (1.5.0_01-b08 mixed mode)

    --------------- T H R E A D ---------------

    Current thread (0x08b24e30): JavaThread "AWT-Windows" daemon [_thread_in_vm, id=208]

    Stack: [0x09780000,0x09880000), sp=0x0987f788, free space=1021k
    Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code)
    V [jvm.dll+0x111f80]
    V [jvm.dll+0x60f56]
    V [jvm.dll+0x858d8]
    V [jvm.dll+0x856d3]
    V [jvm.dll+0x85786]

    Java frames: (J=compiled Java code, j=interpreted, Vv=VM code)
    j sun.awt.windows.WToolkit.eventLoop()V+0
    j sun.awt.windows.WToolkit.run()V+69
    j java.lang.Thread.run()V+11
    v ~StubRoutines::call_stub

    --------------- P R O C E S S ---------------

    Java Threads: ( => current thread )
    0x08dd7a10 JavaThread "Thread-19" [_thread_in_native, id=3768]
    0x08c0fe48 JavaThread "Thread-16" daemon [_thread_blocked, id=3760]
    0x08abad60 JavaThread "Java Sound Event Dispatcher" daemon [_thread_blocked, id=844]
    0x08e0c1c0 JavaThread "Thread-12" [_thread_in_Java, id=3620]
    0x08de5680 JavaThread "AWT-EventQueue-3" [_thread_blocked, id=2224]
    0x08de4c60 JavaThread "thread applet-mp" [_thread_blocked, id=2840]
    0x08b3ec10 JavaThread "AWT-EventQueue-0" [_thread_blocked, id=3360]
    0x08b29848 JavaThread "traceMsgQueueThread" [_thread_blocked, id=3352]
    =>0x08b24e30 JavaThread "AWT-Windows" daemon [_thread_in_vm, id=208]
    0x08b24a48 JavaThread "AWT-Shutdown" [_thread_blocked, id=3348]
    0x08b1d928 JavaThread "Java2D Disposer" daemon [_thread_blocked, id=3344]
    0x08a95328 JavaThread "Low Memory Detector" daemon [_thread_blocked, id=3324]
    0x08a94090 JavaThread "CompilerThread0" daemon [_thread_blocked, id=3316]
    0x0571fca0 JavaThread "Signal Dispatcher" daemon [_thread_blocked, id=3308]
    0x08a91c90 JavaThread "Finalizer" daemon [_thread_blocked, id=3296]
    0x0562e3b0 JavaThread "Reference Handler" daemon [_thread_blocked, id=3292]
    0x011afa80 JavaThread "main" [_thread_in_native, id=3108]

    Other Threads:
    0x01197c28 VMThread [id=3288]
    0x011ab5a8 WatcherThread [id=3328]

    VM state:not at safepoint (normal execution)

    VM Mutex/Monitor currently owned by a thread: None

    Heap
    def new generation total 1472K, used 523K [0x10010000, 0x101a0000, 0x10770000)
    eden space 1344K, 36% used [0x10010000, 0x1008a928, 0x10160000)
    from space 128K, 26% used [0x10180000, 0x10188550, 0x101a0000)
    to space 128K, 0% used [0x10160000, 0x10160000, 0x10180000)
    tenured generation total 18164K, used 10692K [0x10770000, 0x1192d000, 0x16010000)
    the space 18164K, 58% used [0x10770000, 0x111e10e8, 0x111e1200, 0x1192d000)
    compacting perm gen total 8192K, used 7842K [0x16010000, 0x16810000, 0x1a010000)
    the space 8192K, 95% used [0x16010000, 0x167b88d0, 0x167b8a00, 0x16810000)
    No shared spaces configured.

    Dynamic libraries:
    0x00400000 - 0x00419000 C:\Program Files\Internet Explorer\iexplore.exe
    0x77f50000 - 0x77ff7000 C:\WINDOWS\System32\ntdll.dll
    0x77e60000 - 0x77f46000 C:\WINDOWS\system32\kernel32.dll
    0x77c10000 - 0x77c63000 C:\WINDOWS\system32\msvcrt.dll
    0x77d40000 - 0x77dcc000 C:\WINDOWS\system32\USER32.dll
    0x7e090000 - 0x7e0d1000 C:\WINDOWS\system32\GDI32.dll
    0x77dd0000 - 0x77e5d000 C:\WINDOWS\system32\ADVAPI32.dll
    0x78000000 - 0x78087000 C:\WINDOWS\system32\RPCRT4.dll
    0x70a70000 - 0x70ad4000 C:\WINDOWS\system32\SHLWAPI.dll
    0x769c0000 - 0x76b0a000 C:\WINDOWS\System32\SHDOCVW.dll
    0x48000000 - 0x48022000 C:\PROGRA~1\Google\GO333C~1\GOEC62~1.DLL
    0x71ab0000 - 0x71ac5000 C:\WINDOWS\System32\WS2_32.dll
    0x71aa0000 - 0x71aa8000 C:\WINDOWS\System32\WS2HELP.dll
    0x71950000 - 0x71a34000 C:\WINDOWS\WinSxS\x86_Microsoft.Windows. Common-Controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\comctl32.dll
    0x62000000 - 0x62097000 C:\Program Files\Google\Google Desktop Search\GoogleDesktopResources_bg.dll
    0x71a50000 - 0x71a8b000 C:\WINDOWS\System32\mswsock.dll
    0x42000000 - 0x42047000 C:\Program Files\Google\Google Desktop Search\GoogleDesktopCommon.dll
    0x77c00000 - 0x77c07000 C:\WINDOWS\system32\VERSION.dll
    0x773d0000 - 0x77bc7000 C:\WINDOWS\system32\SHELL32.dll
    0x771b0000 - 0x772d4000 C:\WINDOWS\system32\ole32.dll
    0x77120000 - 0x771ab000 C:\WINDOWS\system32\OLEAUT32.dll
    0x76200000 - 0x76298000 C:\WINDOWS\system32\WININET.dll
    0x762c0000 - 0x7634b000 C:\WINDOWS\system32\CRYPT32.dll
    0x762a0000 - 0x762b0000 C:\WINDOWS\system32\MSASN1.dll
    0x77340000 - 0x773cb000 C:\WINDOWS\system32\comctl32.dll
    0x41000000 - 0x4101d000 C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
    0x5ad70000 - 0x5ada4000 C:\WINDOWS\System32\uxtheme.dll
    0x10000000 - 0x10007000 C:\WINDOWS\System32\newdll.dll
    0x75f80000 - 0x7607c000 C:\WINDOWS\System32\BROWSEUI.dll
    0x72430000 - 0x72442000 C:\WINDOWS\System32\browselc.dll
    0x75f40000 - 0x75f5f000 C:\WINDOWS\system32\appHelp.dll
    0x7c890000 - 0x7c911000 C:\WINDOWS\System32\CLBCATQ.DLL
    0x77050000 - 0x77115000 C:\WINDOWS\System32\COMRes.dll
    0x60000000 - 0x60084000 C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll
    0x76f90000 - 0x76fa0000 C:\WINDOWS\System32\Secur32.dll
    0x76620000 - 0x7666e000 C:\WINDOWS\System32\cscui.dll
    0x76600000 - 0x7661b000 C:\WINDOWS\System32\CSCDLL.dll
    0x76670000 - 0x76757000 C:\WINDOWS\System32\SETUPAPI.dll
    0x62900000 - 0x62955000 C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt. dll
    0x760f0000 - 0x7616a000 C:\WINDOWS\system32\urlmon.dll
    0x71ad0000 - 0x71ad8000 C:\WINDOWS\System32\WSOCK32.dll
    0x76b40000 - 0x76b6c000 C:\WINDOWS\System32\WINMM.dll
    0x76c90000 - 0x76cb2000 C:\WINDOWS\system32\IMAGEHLP.dll
    0x76ee0000 - 0x76f17000 C:\WINDOWS\System32\RASAPI32.DLL
    0x76e90000 - 0x76ea1000 C:\WINDOWS\System32\rasman.dll
    0x71c20000 - 0x71c6e000 C:\WINDOWS\System32\NETAPI32.dll
    0x76eb0000 - 0x76edb000 C:\WINDOWS\System32\TAPI32.dll
    0x76e80000 - 0x76e8d000 C:\WINDOWS\System32\rtutils.dll
    0x74770000 - 0x747ff000 C:\WINDOWS\System32\mlang.dll
    0x01280000 - 0x01288000 C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    0x75e90000 - 0x75f37000 C:\WINDOWS\System32\SXS.DLL
    0x01500000 - 0x015a1000 D:\Programs\Bit Comet\BitComet\tools\BitCometBHO_1.2.6.2 6.dll
    0x015e0000 - 0x01768000 D:\Programs\Spybot - Search & Destroy\SDHelper.dll
    0x763b0000 - 0x763f5000 C:\WINDOWS\system32\comdlg32.dll
    0x76380000 - 0x76385000 C:\WINDOWS\System32\msimg32.dll
    0x69450000 - 0x69463000 C:\WINDOWS\System32\faultrep.dll
    0x75a70000 - 0x75b15000 C:\WINDOWS\system32\USERENV.dll
    0x76360000 - 0x7636f000 C:\WINDOWS\System32\WINSTA.dll
    0x76f50000 - 0x76f58000 C:\WINDOWS\System32\WTSAPI32.dll
    0x5edd0000 - 0x5edea000 C:\WINDOWS\System32\olepro32.dll
    0x65af0000 - 0x65af7000 C:\WINDOWS\System32\jsproxy.dll
    0x62300000 - 0x6232c000 C:\Program Files\Yahoo!\Common\yiesrvc.dll
    0x76c30000 - 0x76c5b000 C:\WINDOWS\System32\WINTRUST.DLL
    0x0ffd0000 - 0x0fff3000 C:\WINDOWS\System32\rsaenh.dll
    0x73d50000 - 0x73d60000 C:\WINDOWS\System32\cryptnet.dll
    0x76f60000 - 0x76f8c000 C:\WINDOWS\system32\WLDAP32.dll
    0x722b0000 - 0x722b5000 C:\WINDOWS\System32\sensapi.dll
    0x76f20000 - 0x76f45000 C:\WINDOWS\System32\DNSAPI.dll
    0x76fb0000 - 0x76fb7000 C:\WINDOWS\System32\winrnr.dll
    0x76fc0000 - 0x76fc5000 C:\WINDOWS\System32\rasadhlp.dll
    0x71a90000 - 0x71a98000 C:\WINDOWS\System32\wshtcpip.dll
    0x62200000 - 0x6221c000 C:\Program Files\Yahoo!\Common\YIeTagBm.dll
    0x66700000 - 0x66734000 C:\Program Files\Yahoo!\Common\Yshortcut.dll
    0x02070000 - 0x02113000 C:\Program Files\Google\GoogleToolbarNotifier\4.1.8 05.4472\swg.dll
    0x76d60000 - 0x76d77000 C:\WINDOWS\System32\iphlpapi.dll
    0x76170000 - 0x761f8000 C:\WINDOWS\System32\shdoclc.dll
    0x02160000 - 0x02170000 D:\Programs\FlashGet\jccatch.dll
    0x02590000 - 0x02856000 C:\WINDOWS\System32\msi.dll
    0x65200000 - 0x65213000 C:\Program Files\Yahoo!\Companion\Installs\cpn0\pub mod.dll
    0x65000000 - 0x65032000 C:\Program Files\Yahoo!\Companion\Installs\cpn0\ypu bc.dll
    0x64100000 - 0x6411c000 C:\Program Files\Yahoo!\Companion\Installs\cpn0\YME Remote.dll
    0x74810000 - 0x74ac7000 C:\WINDOWS\System32\mshtml.dll
    0x746f0000 - 0x74716000 C:\WINDOWS\System32\msimtf.dll
    0x74720000 - 0x74764000 C:\WINDOWS\System32\MSCTF.dll
    0x76390000 - 0x763ac000 C:\WINDOWS\System32\IMM32.DLL
    0x75c50000 - 0x75ce1000 c:\windows\system32\jscript.dll
    0x66880000 - 0x6688a000 C:\WINDOWS\System32\imgutil.dll
    0x66e50000 - 0x66e8b000 C:\WINDOWS\System32\iepeers.dll
    0x73000000 - 0x73023000 C:\WINDOWS\System32\WINSPOOL.DRV
    0x746c0000 - 0x746e7000 C:\WINDOWS\System32\MSLS31.DLL
    0x30000000 - 0x303af000 C:\WINDOWS\System32\Macromed\Flash\Flash 9f.ocx
    0x72d20000 - 0x72d29000 C:\WINDOWS\System32\wdmaud.drv
    0x72d10000 - 0x72d18000 C:\WINDOWS\System32\msacm32.drv
    0x77be0000 - 0x77bf4000 C:\WINDOWS\System32\MSACM32.dll
    0x77bd0000 - 0x77bd7000 C:\WINDOWS\System32\midimap.dll
    0x74cb0000 - 0x74d1f000 C:\WINDOWS\System32\mshtmled.dll
    0x5e310000 - 0x5e31b000 C:\WINDOWS\System32\pngfilt.dll
    0x6bdd0000 - 0x6be03000 C:\WINDOWS\System32\dxtrans.dll
    0x76b20000 - 0x76b35000 C:\WINDOWS\System32\ATL.DLL
    0x05c70000 - 0x05c79000 C:\WINDOWS\System32\ddrawex.dll
    0x51000000 - 0x51050000 C:\WINDOWS\System32\DDRAW.dll
    0x73bc0000 - 0x73bc6000 C:\WINDOWS\System32\DCIMAN32.dll
    0x6be10000 - 0x6be65000 C:\WINDOWS\System32\dxtmsft.dll
    0x71d40000 - 0x71d5b000 C:\WINDOWS\System32\actxprxy.dll
    0x6d590000 - 0x6d5a1000 C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.d ll
    0x6d400000 - 0x6d417000 C:\Program Files\Java\jre1.5.0_01\bin\jpiexp32.dll
    0x6d450000 - 0x6d468000 C:\Program Files\Java\jre1.5.0_01\bin\jpishare.dll
    0x6d640000 - 0x6d7c5000 C:\PROGRA~1\Java\JRE15~1.0_0\bin\client\ jvm.dll
    0x6d280000 - 0x6d288000 C:\PROGRA~1\Java\JRE15~1.0_0\bin\hpi.dll
    0x76bf0000 - 0x76bfb000 C:\WINDOWS\System32\PSAPI.DLL
    0x6d610000 - 0x6d61c000 C:\PROGRA~1\Java\JRE15~1.0_0\bin\verify. dll
    0x6d300000 - 0x6d31d000 C:\PROGRA~1\Java\JRE15~1.0_0\bin\java.dl l
    0x6d630000 - 0x6d63f000 C:\PROGRA~1\Java\JRE15~1.0_0\bin\zip.dll
    0x6d000000 - 0x6d166000 C:\Program Files\Java\jre1.5.0_01\bin\awt.dll
    0x5c000000 - 0x5c0c8000 C:\WINDOWS\System32\D3DIM700.DLL
    0x6d240000 - 0x6d27d000 C:\Program Files\Java\jre1.5.0_01\bin\fontmanager.d ll
    0x6d1f0000 - 0x6d203000 C:\Program Files\Java\jre1.5.0_01\bin\deploy.dll
    0x6d5d0000 - 0x6d5ed000 C:\Program Files\Java\jre1.5.0_01\bin\RegUtils.dll
    0x6d3e0000 - 0x6d3f4000 C:\Program Files\Java\jre1.5.0_01\bin\jpicom32.dll
    0x6d4c0000 - 0x6d4d3000 C:\Program Files\Java\jre1.5.0_01\bin\net.dll
    0x72b20000 - 0x72b38000 C:\WINDOWS\System32\plugin.ocx
    0x767f0000 - 0x76814000 C:\WINDOWS\system32\schannel.dll
    0x6d4e0000 - 0x6d4e9000 C:\Program Files\Java\jre1.5.0_01\bin\nio.dll
    0x6d3c0000 - 0x6d3df000 C:\Program Files\Java\jre1.5.0_01\bin\jpeg.dll
    0x6d470000 - 0x6d495000 C:\Program Files\Java\jre1.5.0_01\bin\jsound.dll
    0x6d4a0000 - 0x6d4a7000 C:\Program Files\Java\jre1.5.0_01\bin\jsoundds.dll
    0x51080000 - 0x510e1000 C:\WINDOWS\System32\DSOUND.dll
    0x5ef80000 - 0x5ef84000 C:\WINDOWS\System32\KsUser.dll

    VM Arguments:
    jvm_args: -Xbootclasspath/a:C:\PROGRA~1\Java\JRE15~1.0_0\lib\deplo y.jar;C:\PROGRA~1\Java\JRE15~1.0_0\lib\p lugin.jar -Xmx96m -Djavaplugin.maxHeapSize=96m -Xverify:remote -Djavaplugin.version=1.5.0_01 -Djavaplugin.nodotversion=150_01 -Dbrowser=sun.plugin -DtrustProxy=true -Dapplication.home=C:\PROGRA~1\Java\JRE15 ~1.0_0 -Djava.protocol.handler.pkgs=sun.plugin.n et.protocol -Djavaplugin.vm.options=-Djava.class.path=C:\PROGRA~1\Java\JRE15~ 1.0_0\classes -Xbootclasspath/a:C:\PROGRA~1\Java\JRE15~1.0_0\lib\deplo y.jar;C:\PROGRA~1\Java\JRE15~1.0_0\lib\p lugin.jar -Xmx96m -Djavaplugin.maxHeapSize=96m -Xverify:remote -Djavaplugin.version=1.5.0_01 -Djavaplugin.nodotversion=150_01 -Dbrowser=sun.plugin -DtrustProxy=true -Dapplication.home=C:\PROGRA~1\Java\JRE15 ~1.0_0 -Djava.protocol.handler.pkgs=sun.plugin.n et.protocol vfprintf
    java_command: <unknown>

    Environment Variables:
    PATH=C:\PROGRA~1\Java\JRE15~1.0_0\bin;C: \WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\ System32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\ATI Technologies\ATI.ACE\;D:\Programs\Samsun g mobile;C:\Program Files\Internet Explorer;;.
    USERNAME=R
    OS=Windows_NT
    PROCESSOR_IDENTIFIER=x86 Family 15 Model 4 Stepping 1, GenuineIntel


    --------------- S Y S T E M ---------------

    OS: Windows XP Build 2600 Service Pack 1

    CPU:total 1 family 15, cmov, cx8, fxsr, mmx, sse, sse2, ht

    Memory: 4k page, physical 1048048k(639384k free), swap 1341816k(1032536k free)

    vm_info: Java HotSpot(TM) Client VM (1.5.0_01-b08) for windows-x86, built on Dec 6 2004 19:51:00 by "java_re" with MS VC++ 6.0

  6. #6
    Registered User
    Join Date: Dec:2005
    Location: yvr
    Posts: 5,167
    HiJackThis , FIX:

    O4 - HKCU\..\Run: [Explorer] C:\WINDOWS\System32\iexplorer.exe en

    Google Desktop, , .
    - HJT, code (#) :
    Code:
    ....
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
    Boot mode: Normal
    
    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    ....

  7. #7
    Hacker
    Join Date: Oct:2008
    Location: localhost
    Posts: 150
    1. 1 ...
    2. -, , :

    C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

    3. fix ...

    O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.8 05.4472\swg.dll
    O2 - BHO: Class - {D49792CC-8DC7-3486-5C0A-ED97D10E10D8} - (no file)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt. dll
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
    O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
    O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\System32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
    O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
    O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
    O4 - HKCU\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskb arInit
    O4 - HKCU\..\Run: [Explorer] C:\WINDOWS\System32\iexplorer.exe en
    ( , )
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
    O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Autodata Limited License Service - Unknown owner - C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
    O23 - Service: Google Desktop 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
    Let 7he gr0ovE r3LeaSe y0ur m!nd !

  8. #8
    Registered User
    Join Date: Dec:2008
    Location: varna
    Posts: 2
    C:\WINDOWS\SYSTEM32\USER32.DLL
    Win32:SysPatch [Wrm]/

    ???

  9. #9
    Registered User
    Join Date: Dec:2008
    Location: varna
    Posts: 2
    ???

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Copyright © 1999-2011 . .
iskamPC.com | mobility.BG | Bloody's Techblog | | 3D Vision Blog |