To talk on Icrontic, just register!

It only takes 30 seconds.

Have an account? Sign in:

Forgot?

To reopen your thread, send a Private Message (PM) to Trogan with a link to your thread.

If you are not the user who started this thread, you must start your own thread instead.

 
Reply to Discussion Options
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
9 Jul 2006, 8:27am

Angry Can't open My C: Drive!!!:'( PLease Help!!

hi everybody!I'm new here.And i've got a problem!I can't open my C: drive.I can open Control Panel,D: drive,My Computer but when i try to open C: drive; C: drive windows automaticallly closes.Anybody has an any idea???And Here is my Hijackthis Log also...



Logfile of HijackThis v1.99.1
Scan saved at 10:18:28, on 09.07.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Billionton\Bluetooth Software\bin\btwdins.exe
C:\NVIDIA\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\NVIDIA\NetworkAccessManager\bin\nSvcIp.exe
C:\NVIDIA\NetworkAccessManager\bin\nSvcLog.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\NVIDIA\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\DAP\DAP.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\PROGRA~1\TWEAKM~1\TMTray.exe
C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe
C:\Program Files\Desktop Sidebar\dsidebar.exe
C:\Program Files\Eraser\eraser.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\SPYWAR~1\swdoctor.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Billionton\Bluetooth Software\BTTray.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe
C:\Program Files\TechniSat DVB\bin\Server4PC.exe
C:\PROGRA~1\BILLIO~1\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Pc_K0P@t\LOCALS~1\Temp\Rar$EX00.516\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.copernic.com/explorer17/?l=ENG&e=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Pc-K0p@t
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Bağlantılar
R3 - URLSearchHook: (no name) - {83B79436-C1A7-427B-B40D-689E9CC71FAE} - C:\PROGRA~1\COPERN~1\COPERN~3.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Idea2 SidebarBrowserMonitor Class - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: TweakMASTER PRO Component - {7DAAC7DE-9EF0-4FF0-BFA5-AFF3E899054C} - C:\PROGRA~1\TWEAKM~1\TweakBHO.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll
O3 - Toolbar: Copernic Desktop Search - {C5F7A735-70F1-477F-8C36-6FF3C736017B} - C:\Program Files\Copernic Desktop Search\CopernicDesktopSearchIntegration977.dll
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TweakMASTER] C:\PROGRA~1\TWEAKM~1\TMTray.exe
O4 - HKCU\..\Run: [Copernic Desktop Search] "C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe" /tray
O4 - HKCU\..\Run: [SIDEBAR] "C:\Program Files\Desktop Sidebar\dsidebar.exe"
O4 - HKCU\..\Run: [Eraser] "C:\Program Files\Eraser\eraser.exe" -hide
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Spyware Doctor] C:\PROGRA~1\SPYWAR~1\swdoctor.exe /Q
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Kaspersky Anti-Hacker.lnk = C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe
O4 - Global Startup: Server4PC.lnk = C:\Program Files\TechniSat DVB\bin\Server4PC.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Add to &LinkFox - res://C:\PROGRA~1\TWEAKM~1\TweakBHO.dll/IESCRIPT
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\Billionton\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra button: Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Billionton\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Billionton\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Billionton\Bluetooth Software\bin\btwdins.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\NVIDIA\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\NVIDIA\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - Unknown owner - C:\NVIDIA\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
10 Jul 2006, 9:18pm
in this huge forum nobody to help???
mtunick
I've turned to the dork side
mtunick
191 Posts
11 Jul 2006, 2:44am
as far as i can tell theres not TOO much wrong in your hijackthis log, but the problem probably wouldnt be there anyways. I'm no expert, but I would suggest some online scans such as bitdefender, panda activescan, and trend micro. At least maybe itll clear up some problems.
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
11 Jul 2006, 10:08am
i scanned my computer in all those online scans.I'm using Kaspersky Anti_virus and i scanned with it too.They can't find anything on my pc??I'm guessing this is an windows error not a spyware i think.drwtsn32.exe says it's an error in explorer.exe.If I send you drwtsn32.exe error reports will it be useful?or any other ideas??
mtunick
I've turned to the dork side
mtunick
191 Posts
11 Jul 2006, 12:50pm
Yes that would definetly help. If nothing else works, keep in mind the very useful System Restore. It's interesting that you're having an error with drwtsn32.exe, because that .exe is used to report errors that occur.
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
11 Jul 2006, 4:41pm
My windows is Turkish so if you have a question at something i will translate it to english.Part 1 is:


Uygulama özel durumu oluştu:
App: C:\WINDOWS\explorer.exe (pid=6104)
Zaman: 09.07.2006 @ 11:02:24.687
Özel durum numarası: c0000005 (erişim ihlali)

*----> Sistem Bilgileri <----*
Bilgisayar Adı: PCKOPAT
Kullanıcı Adı: Pc_K0P@t
Terminal Oturum Kimliği: 0
İşlemci Sayısı: 1
İşlemci Türü: x86 Family 15 Model 47 Stepping 2
Windows sürümü: 5.1
Geçerli Yapı: 2600
Service Pack: 2
Geçerli Tür: Uniprocessor Free
Kayıtlı Kuruluş:
Kayıtlı Sahibi: Pc_K0P@t

*----> Görev Listesi <----*
0 System Process
4 System
712 smss.exe
952 csrss.exe
980 winlogon.exe
1028 services.exe
1040 lsass.exe
1196 Ati2evxx.exe
1212 svchost.exe
1288 svchost.exe
1580 MsMpEng.exe
1624 svchost.exe
1676 StyleXPService.exe
1816 svchost.exe
1872 svchost.exe
588 spoolsv.exe
780 Ati2evxx.exe
1164 Error 0xD0000022
1268 SOUNDMAN.EXE
1332 DAP.EXE
1360 daemon.exe
1372 TMTray.exe
1400 CopernicDesktopSearch.exe
1408 Error 0xD0000022
1436 svchost.exe
1432 dsidebar.exe
1464 btwdins.exe
1560 apache.exe
1744 nSvcIp.exe
1776 eraser.exe
1996 TeaTimer.exe
2012 nSvcLog.exe
196 sdhelp.exe
1892 swdoctor.exe
800 MsnMsgr.Exe
924 reader_sl.exe
648 BTTray.exe
1180 KAVPF.exe
1456 Server4PC.exe
1504 apache.exe
3732 BTSTAC~1.EXE
3836 wmiprvse.exe
1852 alg.exe
3248 svchost.exe
4820 wuauclt.exe
5924 wuauclt.exe
4540 wpabaln.exe
5760 explorer.exe
6104 explorer.exe
3588 drwtsn32.exe

*----> Modül Listesi <----*
(0000000000a50000 - 0000000000a67000: C:\PROGRA~1\SPYWAR~1\Tools\eg.dat
(0000000000c70000 - 0000000000c88000: C:\PROGRA~1\SPYWAR~1\Tools\swpg.dat
(0000000000f00000 - 0000000000f12000: C:\WINDOWS\system32\browselc.dll
(0000000001000000 - 00000000014b4000: C:\WINDOWS\explorer.exe
(00000000015a0000 - 00000000015e6000: C:\Program Files\Desktop Sidebar\sbhelp.dll
(00000000015f0000 - 00000000016ab000: C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
(00000000018c0000 - 00000000018d2000: C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll
(0000000002330000 - 0000000002337000: C:\Program Files\Copernic Desktop Search\CopernicDesktopSearchSystem977.dll
(0000000002400000 - 0000000002647000: C:\WINDOWS\system32\shimgvw.dll
(0000000002680000 - 00000000027ec000: C:\WINDOWS\System32\quartz.dll
(0000000002db0000 - 0000000002e2d000: C:\Program Files\ACE Mega CoDecS Pack\SystemS\Elecard\mpeg2dmx.ax
(0000000002f30000 - 0000000002ff3000: C:\Program Files\ACE Mega CoDecS Pack\SystemS\Gabest\vsfilter.dll
(0000000003000000 - 0000000003031000: C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvljpg20.dll
(0000000003040000 - 0000000003081000: C:\Program Files\ACE Mega CoDecS Pack\SystemS\Gabest\avisplitter.ax
(0000000010000000 - 000000001000e000: C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
(000000001c400000 - 000000001c411000: C:\Program Files\ACE Mega CoDecS Pack\SystemS\Elecard\pva_dmx.ax
(0000000020000000 - 00000000202ca000: C:\WINDOWS\system32\xpsp2res.dll
(000000004ecb0000 - 000000004ee53000: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll
(000000005a000000 - 000000005a018000: C:\PROGRA~1\SPYWAR~1\Tools\klg.dat
(000000005a780000 - 000000005a94a000: C:\WINDOWS\AppPatch\AcGenral.DLL
(000000005b0f0000 - 000000005b128000: C:\WINDOWS\system32\UxTheme.dll
(000000005d000000 - 000000005d027000: C:\WINDOWS\System32\shmedia.dll
(000000005d0a0000 - 000000005d0c6000: C:\WINDOWS\system32\ShimEng.dll
(000000005d5e0000 - 000000005d677000: C:\WINDOWS\system32\comctl32.dll
(000000005f320000 - 000000005f337000: C:\WINDOWS\system32\olepro32.dll
(0000000060340000 - 0000000060348000: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\culture.dll
(0000000060610000 - 0000000060616000: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Fusion.dll
(00000000611f0000 - 000000006127c000: C:\WINDOWS\System32\qedit.dll
(00000000641f0000 - 000000006420d000: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Shfusion.dll
(0000000064220000 - 0000000064238000: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ShFusRes.dll
(0000000067000000 - 0000000067026400: C:\PROGRA~1\TWEAKM~1\TweakBHO.dll
(000000006c750000 - 000000006c79d000: C:\WINDOWS\system32\DUSER.dll
(000000006d600000 - 000000006d62d000: C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
(000000006ff90000 - 000000006ffe4000: C:\WINDOWS\system32\NETAPI32.dll
(0000000072fd0000 - 0000000072ff6000: C:\WINDOWS\system32\WINSPOOL.DRV
(0000000073b20000 - 0000000073b37000: C:\WINDOWS\System32\AVIFIL32.dll
(00000000745e0000 - 00000000748a6000: C:\WINDOWS\system32\msi.dll
(00000000754a0000 - 000000007551f000: C:\WINDOWS\system32\CRYPTUI.dll
(0000000075e20000 - 0000000075e41000: C:\WINDOWS\System32\MSVFW32.dll
(0000000075e70000 - 0000000075f20000: C:\WINDOWS\system32\SXS.DLL
(0000000075f60000 - 000000007605d000: C:\WINDOWS\system32\BROWSEUI.dll
(0000000076360000 - 0000000076365000: C:\WINDOWS\system32\MSIMG32.dll
(0000000076390000 - 00000000763d9000: C:\WINDOWS\system32\comdlg32.dll
(00000000765c0000 - 00000000765d1000: C:\WINDOWS\System32\devenum.dll
(00000000765e0000 - 00000000765fd000: C:\WINDOWS\System32\CSCDLL.dll
(0000000076980000 - 00000000769a5000: C:\WINDOWS\system32\ntshrui.dll
(00000000769b0000 - 0000000076a63000: C:\WINDOWS\system32\USERENV.dll
(0000000076b10000 - 0000000076b21000: C:\WINDOWS\system32\ATL.DLL
(0000000076b30000 - 0000000076b5d000: C:\WINDOWS\system32\WINMM.dll
(0000000076c20000 - 0000000076c4e000: C:\WINDOWS\system32\WINTRUST.dll
(0000000076c80000 - 0000000076ca8000: C:\WINDOWS\system32\IMAGEHLP.dll
(0000000076f50000 - 0000000076f7c000: C:\WINDOWS\system32\WLDAP32.dll
(0000000076fc0000 - 000000007703f000: C:\WINDOWS\system32\CLBCATQ.DLL
(0000000077040000 - 0000000077103000: C:\WINDOWS\system32\COMRes.dll
(0000000077110000 - 000000007719c000: C:\WINDOWS\system32\OLEAUT32.dll
(00000000771a0000 - 0000000077246000: C:\WINDOWS\system32\WININET.dll
(0000000077250000 - 00000000772f0000: C:\WINDOWS\system32\urlmon.dll
(00000000773c0000 - 00000000774c2000: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
(00000000774d0000 - 000000007760d000: C:\WINDOWS\system32\ole32.dll
(0000000077750000 - 00000000778bf000: C:\WINDOWS\system32\SHDOCVW.dll
(0000000077910000 - 0000000077a04000: C:\WINDOWS\system32\SETUPAPI.dll
(0000000077a10000 - 0000000077a64000: C:\WINDOWS\System32\cscui.dll
(0000000077a70000 - 0000000077b04000: C:\WINDOWS\system32\CRYPT32.dll
(0000000077b10000 - 0000000077b22000: C:\WINDOWS\system32\MSASN1.dll
(0000000077b30000 - 0000000077b52000: C:\WINDOWS\system32\appHelp.dll
(0000000077bd0000 - 0000000077be5000: C:\WINDOWS\system32\MSACM32.dll
(0000000077bf0000 - 0000000077bf8000: C:\WINDOWS\system32\VERSION.dll
(0000000077c00000 - 0000000077c58000: C:\WINDOWS\system32\msvcrt.dll
(0000000077d30000 - 0000000077dc0000: C:\WINDOWS\system32\USER32.dll
(0000000077dc0000 - 0000000077e6b000: C:\WINDOWS\system32\ADVAPI32.dll
(0000000077e70000 - 0000000077f01000: C:\WINDOWS\system32\RPCRT4.dll
(0000000077f10000 - 0000000077f57000: C:\WINDOWS\system32\GDI32.dll
(0000000077f60000 - 0000000077fd6000: C:\WINDOWS\system32\SHLWAPI.dll
(0000000077fe0000 - 0000000077ff1000: C:\WINDOWS\system32\Secur32.dll
(0000000078130000 - 00000000781cb000: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.91_x-ww_0de56c07\MSVCR80.dll
(0000000079000000 - 0000000079045000: C:\WINDOWS\system32\mscoree.dll
(000000007c340000 - 000000007c396000: C:\WINDOWS\system32\MSVCR71.dll
(000000007c800000 - 000000007c8ee000: C:\WINDOWS\system32\kernel32.dll
(000000007c8f0000 - 000000007c99f000: C:\WINDOWS\system32\ntdll.dll
(000000007c9b0000 - 000000007d1c6000: C:\WINDOWS\system32\SHELL32.dll

*----> İş Parçacığı Kimliği 0x17dc için Durum Dökümü <----*

eax=000c5000 ebx=00000000 ecx=0007dd68 edx=00001000 esi=0007fe84 edi=77f81679
eip=7c8feb94 esp=0007fe44 ebp=0007fe60 iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246

*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\ntdll.dll -
İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e

*----> Yığın Geri İzleme <----*
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\BROWSEUI.dll -
WARNING: Stack unwind information not available. Following frames may be wrong.
*** ERROR: Module load completed but symbols could not be loaded for C:\WINDOWS\explorer.exe
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\kernel32.dll -
ChildEBP RetAddr Args to Child
0007fe60 75f918fc 0007fe84 00000000 00000000 ntdll!KiFastSystemCallRet
0007feb0 0102b499 000a3850 01000000 00000000 BROWSEUI!Ordinal106+0x12d
0007ff0c 01023481 01000000 000205e8 00000001 explorer+0x2b499
0007ff5c 0101e2b6 01000000 00000000 000205e8 explorer+0x23481
0007ffc0 7c816d4f 0000004e 00000000 7ffda000 explorer+0x1e2b6
0007fff0 00000000 0101e24e 00000000 78746341 kernel32!RegisterWaitForInputIdle+0x49

*----> İşlenmemiş Yığın Dökümü <----*
000000000007fe44 be 91 d3 77 f1 91 d3 77 - 84 fe 07 00 00 00 00 00 ...w...w........
000000000007fe54 00 00 00 00 00 00 00 00 - 00 00 00 00 b0 fe 07 00 ................
000000000007fe64 fc 18 f9 75 84 fe 07 00 - 00 00 00 00 00 00 00 00 ...u............
000000000007fe74 00 00 00 00 00 00 00 00 - 00 00 00 00 00 a0 fd 7f ................
000000000007fe84 9c 00 02 00 c4 c0 00 00 - 00 00 00 00 00 00 00 00 ................
000000000007fe94 bc 16 05 00 61 01 00 00 - 2f 00 00 00 00 00 00 00 ....a.../.......
000000000007fea4 c8 39 0a 00 01 00 00 00 - 00 00 00 00 0c ff 07 00 .9..............
000000000007feb4 99 b4 02 01 50 38 0a 00 - 00 00 00 01 00 00 00 00 ....P8..........
000000000007fec4 00 00 00 00 40 2c 0a 00 - 02 00 00 00 01 00 00 00 ....@,..........
000000000007fed4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000007fee4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000007fef4 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000007ff04 00 00 00 00 04 af 00 00 - 5c ff 07 00 81 34 02 01 ........\....4..
000000000007ff14 00 00 00 01 e8 05 02 00 - 01 00 00 00 00 a0 fd 7f ................
000000000007ff24 c0 ff 07 00 00 00 00 00 - 24 fd 07 00 50 ff 07 00 ........$...P...
000000000007ff34 e0 ff 07 00 27 e0 8f 7c - ed aa 80 7c ff ff ff ff ....'..|...|....
000000000007ff44 0c 00 00 00 39 e6 8f 7c - c9 aa 80 7c ff ff ff ff ....9..|...|....
000000000007ff54 0c 00 00 00 64 ff 07 00 - c0 ff 07 00 b6 e2 01 01 ....d...........
000000000007ff64 00 00 00 01 00 00 00 00 - e8 05 02 00 01 00 00 00 ................
000000000007ff74 4e 00 00 00 00 00 00 00 - 44 00 00 00 64 06 02 00 N.......D...d...

*----> İş Parçacığı Kimliği 0x17e0 için Durum Dökümü <----*

eax=00e1ff54 ebx=00000000 ecx=00093098 edx=7c8feb94 esi=00093098 edi=00000100
eip=7c8feb94 esp=00e1fe1c ebp=00e1ff80 iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246

İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e

*----> Yığın Geri İzleme <----*
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\RPCRT4.dll -
WARNING: Stack unwind information not available. Following frames may be wrong.
ChildEBP RetAddr Args to Child
00e1ff80 77e76c22 00e1ffa8 77e76a3b 00093098 ntdll!KiFastSystemCallRet
00e1ff88 77e76a3b 00093098 00000000 0007cfdc RPCRT4!I_RpcBCacheFree+0x5ea
00e1ffa8 77e76c0a 0009ea80 00e1ffec 7c80b50b RPCRT4!I_RpcBCacheFree+0x403
00e1ffb4 7c80b50b 000b60a0 00000000 0007cfdc RPCRT4!I_RpcBCacheFree+0x5d2
00e1ffec 00000000 77e76bf0 000b60a0 00000000 kernel32!GetModuleFileNameA+0x1b4

*----> İşlenmemiş Yığın Dökümü <----*
0000000000e1fe1c 99 e3 8f 7c 03 67 e7 77 - 80 01 00 00 70 ff e1 00 ...|.g.w....p...
0000000000e1fe2c 00 00 00 00 a8 4a 0c 00 - 54 ff e1 00 00 7b f1 e2 .....J..T....{..
0000000000e1fe3c 1c 2e 5b 00 60 5b 03 e1 - 30 00 30 00 de da 02 e3 ..[.`[..0.0.....
0000000000e1fe4c e8 02 00 00 b8 1b bc a5 - 42 36 5b 80 e8 02 00 00 ........B6[.....
0000000000e1fe5c 34 00 00 c0 60 54 21 88 - 30 d4 00 e1 04 55 21 88 4...`T!.0....U!.
0000000000e1fe6c f8 1b bc a5 48 d4 00 e1 - 30 d4 00 e1 b8 1b bc a5 ....H...0.......
0000000000e1fe7c 4d 36 5b 80 d4 54 21 88 - 04 55 21 88 60 54 21 88 M6[..T!..U!.`T!.
0000000000e1fe8c 10 00 f8 00 82 da 02 e3 - 00 30 88 c0 25 01 00 00 .........0..%...
0000000000e1fe9c e8 01 00 00 e8 01 00 00 - 9c 44 88 c0 00 02 00 00 .........D......
0000000000e1feac 20 b5 4a 88 fc 3c 88 c0 - 4b 39 cc a7 60 04 00 00 .J..<..K9..`...
0000000000e1febc 88 49 66 89 86 02 00 00 - 60 4c cc a7 c4 1b bc a5 .If.....`L......
0000000000e1fecc e0 17 00 00 60 04 00 00 - 86 02 00 00 00 b5 29 88 ....`.........).
0000000000e1fedc 98 47 66 89 24 1c bc a5 - d8 1b bc a5 00 f0 df ff .Gf.$...........
0000000000e1feec 0a 00 00 00 ff ff ff ff - 98 47 66 89 ff ff ff ff .........Gf.....
0000000000e1fefc 46 02 00 00 e2 09 54 80 - 24 1c bc a5 00 b5 29 88 F.....T.$.....).
0000000000e1ff0c 20 f1 df ff 9c b6 29 88 - 9c 01 50 80 70 b5 29 88 .....)...P.p.).
0000000000e1ff1c 00 b5 29 88 be 99 4f 80 - 6c b6 29 88 00 b5 29 88 ..)...O.l.)...).
0000000000e1ff2c 34 b5 29 88 80 ff e1 00 - 99 66 e7 77 4c ff e1 00 4.)......f.wL...
0000000000e1ff3c a9 66 e7 77 ed 10 8f 7c - 70 5c 0b 00 a0 60 0b 00 .f.w...|p\...`..
0000000000e1ff4c 00 a2 2f 4d ff ff ff ff - 00 5d 1e ee ff ff ff ff ../M.....]......

*----> İş Parçacığı Kimliği 0x17e4 için Durum Dökümü <----*

eax=774ee429 ebx=00007530 ecx=7c9005c8 edx=00000000 esi=00000000 edi=00e5ff50
eip=7c8feb94 esp=00e5ff20 ebp=00e5ff78 iopl=0 nv up ei pl nz na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000206

İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
11 Jul 2006, 4:42pm
Part 2:
*----> Yığın Geri İzleme <----*
WARNING: Stack unwind information not available. Following frames may be wrong.
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\ole32.dll -
ChildEBP RetAddr Args to Child
00e5ff78 7c802451 0000ea60 00000000 00e5ffb4 ntdll!KiFastSystemCallRet
00e5ff88 774ee31d 0000ea60 000b8a10 774ee3dc kernel32!Sleep+0xf
00e5ffb4 7c80b50b 000b8a10 00000000 00093150 ole32!StringFromGUID2+0x51b
00e5ffec 00000000 774ee429 000b8a10 00000000 kernel32!GetModuleFileNameA+0x1b4

*----> İşlenmemiş Yığın Dökümü <----*
0000000000e5ff20 5c d8 8f 7c ed 23 80 7c - 00 00 00 00 50 ff e5 00 \..|.#.|....P...
0000000000e5ff30 50 25 80 7c f8 6d 5f 77 - 30 75 00 00 14 00 00 00 P%.|.m_w0u......
0000000000e5ff40 01 00 00 00 00 00 00 00 - 00 00 00 00 10 00 00 00 ................
0000000000e5ff50 00 ba 3c dc ff ff ff ff - 00 d1 4d 77 50 ff e5 00 ..<.......MwP...
0000000000e5ff60 30 ff e5 00 00 00 00 00 - dc ff e5 00 f3 99 83 7c 0..............|
0000000000e5ff70 58 24 80 7c 00 00 00 00 - 88 ff e5 00 51 24 80 7c X$.|........Q$.|
0000000000e5ff80 60 ea 00 00 00 00 00 00 - b4 ff e5 00 1d e3 4e 77 `.............Nw
0000000000e5ff90 60 ea 00 00 10 8a 0b 00 - dc e3 4e 77 00 00 00 00 `.........Nw....
0000000000e5ffa0 00 00 00 00 10 8a 0b 00 - 00 00 4d 77 44 e4 4e 77 ..........MwD.Nw
0000000000e5ffb0 50 31 09 00 ec ff e5 00 - 0b b5 80 7c 10 8a 0b 00 P1.........|....
0000000000e5ffc0 00 00 00 00 50 31 09 00 - 10 8a 0b 00 00 d0 fd 7f ....P1..........
0000000000e5ffd0 00 c6 e3 89 c0 ff e5 00 - 80 a6 d3 88 ff ff ff ff ................
0000000000e5ffe0 f3 99 83 7c 18 b5 80 7c - 00 00 00 00 00 00 00 00 ...|...|........
0000000000e5fff0 00 00 00 00 29 e4 4e 77 - 10 8a 0b 00 00 00 00 00 ....).Nw........
0000000000e60000 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000000e60010 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000000e60020 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000000e60030 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000000e60040 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000000e60050 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................

*----> İş Parçacığı Kimliği 0x17e8 için Durum Dökümü <----*

eax=77e76bf0 ebx=00000000 ecx=0000000c edx=004136f8 esi=00093098 edi=00000100
eip=7c8feb94 esp=00e9fe1c ebp=00e9ff80 iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246

İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e

*----> Yığın Geri İzleme <----*
WARNING: Stack unwind information not available. Following frames may be wrong.
ChildEBP RetAddr Args to Child
00e9ff80 77e76c22 00e9ffa8 77e76a3b 00093098 ntdll!KiFastSystemCallRet
00e9ff88 77e76a3b 00093098 00000000 00410178 RPCRT4!I_RpcBCacheFree+0x5ea
00e9ffa8 77e76c0a 0009ea80 00e9ffec 7c80b50b RPCRT4!I_RpcBCacheFree+0x403
00e9ffb4 7c80b50b 000b9320 00000000 00410178 RPCRT4!I_RpcBCacheFree+0x5d2
00e9ffec 00000000 77e76bf0 000b9320 00000000 kernel32!GetModuleFileNameA+0x1b4

*----> İşlenmemiş Yığın Dökümü <----*
0000000000e9fe1c 99 e3 8f 7c 03 67 e7 77 - 80 01 00 00 70 ff e9 00 ...|.g.w....p...
0000000000e9fe2c 00 00 00 00 38 fa 0b 00 - 54 ff e9 00 02 00 00 00 ....8...T.......
0000000000e9fe3c a4 6b 7b a5 20 52 cc 88 - 02 00 00 00 80 f9 e3 89 .k{. R..........
0000000000e9fe4c 3a 16 5b 80 80 f9 e3 89 - 38 52 cc 88 20 52 cc 88 :.[.....8R.. R..
0000000000e9fe5c 9b 0e 00 00 9a 0e 00 00 - 20 b9 67 e2 00 00 00 02 ........ .g.....
0000000000e9fe6c 74 6b 7b a5 c9 43 5e 80 - 00 00 00 00 0c 00 00 00 tk{..C^.........
0000000000e9fe7c 28 b9 67 e2 30 55 6a 88 - 98 6b 7b a5 00 29 60 80 (.g.0Uj..k{..)`.
0000000000e9fe8c 50 b7 0f e2 bc 04 00 00 - 80 f9 e3 89 50 b7 0f e2 P...........P...
0000000000e9fe9c 20 52 cc 88 bc 04 00 00 - 00 00 00 00 68 b7 0f e2 R..........h...
0000000000e9feac 78 a9 04 e1 21 52 cc 88 - 4b 39 cc a7 58 0f 00 00 x...!R..K9..X...
0000000000e9febc f0 0c 4a 88 82 02 00 00 - 60 4c cc a7 03 00 1f 00 ..J.....`L......
0000000000e9fecc e8 17 00 00 58 0f 00 00 - 82 02 00 00 68 e9 23 88 ....X.......h.#.
0000000000e9fedc 00 0b 4a 88 24 6c 7b a5 - d8 6b 7b a5 00 f0 df ff ..J.$l{..k{.....
0000000000e9feec 0a 00 00 00 ff ff ff ff - 00 0b 4a 88 ff ff ff ff ..........J.....
0000000000e9fefc 46 02 00 00 e2 09 54 80 - 24 6c 7b a5 68 e9 23 88 F.....T.$l{.h.#.
0000000000e9ff0c 20 f1 df ff 04 eb 23 88 - 9c 01 50 80 d8 e9 23 88 .....#...P...#.
0000000000e9ff1c 68 e9 23 88 be 99 4f 80 - d4 ea 23 88 68 e9 23 88 h.#...O...#.h.#.
0000000000e9ff2c 9c e9 23 88 80 ff e9 00 - 99 66 e7 77 4c ff e9 00 ..#......f.wL...
0000000000e9ff3c a9 66 e7 77 ed 10 8f 7c - f8 92 0b 00 20 93 0b 00 .f.w...|.... ...
0000000000e9ff4c 00 a2 2f 4d ff ff ff ff - 00 5d 1e ee ff ff ff ff ../M.....]......

*----> İş Parçacığı Kimliği 0x17ec için Durum Dökümü <----*

eax=e3246084 ebx=00effb6c ecx=e311f084 edx=bf9a4640 esi=00000000 edi=7ffda000
eip=7c8feb94 esp=00effb44 ebp=00effbe0 iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=6d24 es=1f80 fs=003b gs=0000 efl=00200246

İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e

*----> Yığın Geri İzleme <----*
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\USER32.dll -
WARNING: Stack unwind information not available. Following frames may be wrong.
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\DUSER.dll -
ChildEBP RetAddr Args to Child
00effbe0 77d395f9 00000002 00effc08 00000000 ntdll!KiFastSystemCallRet
00effc3c 6c784b92 00000001 00effc70 ffffffff USER32!GetLastInputInfo+0x105
00effc5c 6c784cfd 000024ff ffffffff 00000000 DUSER+0x34b92
00effc80 6c784ef9 000024ff 00000000 00effcac DUSER+0x34cfd
00effc90 77d789eb 000024ff 00000000 00000064 DUSER+0x34ef9
00effcac 7c8feae3 00effcbc 00000008 000024ff USER32!DdeConnectList+0x955
00efff20 75f8538d 000a6e88 00000000 00000000 ntdll!KiUserCallbackDispatcher+0x13
00efffb4 7c80b50b 000a6e88 00000000 00000000 BROWSEUI!Ordinal138+0x7b9d
00efffec 00000000 75f8533d 000a6e88 00000000 kernel32!GetModuleFileNameA+0x1b4

*----> İşlenmemiş Yığın Dökümü <----*
0000000000effb44 ab e9 8f 7c f2 94 80 7c - 02 00 00 00 6c fb ef 00 ...|...|....l...
0000000000effb54 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000000effb64 02 00 00 00 00 00 00 00 - 28 04 00 00 e4 01 00 00 ........(.......
0000000000effb74 00 00 00 00 14 fc ef 00 - 5d 22 8c 01 00 00 00 00 ........]"......
0000000000effb84 00 00 00 00 b0 c9 0e 00 - 14 00 00 00 01 00 00 00 ................
0000000000effb94 00 00 00 00 00 00 00 00 - 10 00 00 00 00 00 00 00 ................
0000000000effba4 00 00 00 00 ff ff ff ff - 00 a0 fd 7f 00 b0 fd 7f ................
0000000000effbb4 00 00 00 00 00 00 00 00 - 6c fb ef 00 aa 19 05 00 ........l.......
0000000000effbc4 02 00 00 00 60 fb ef 00 - 00 00 00 00 a4 ff ef 00 ....`...........
0000000000effbd4 f3 99 83 7c 90 95 80 7c - 00 00 00 00 3c fc ef 00 ...|...|....<...
0000000000effbe4 f9 95 d3 77 02 00 00 00 - 08 fc ef 00 00 00 00 00 ...w............
0000000000effbf4 ff ff ff ff 00 00 00 00 - ff ff ff ff 01 00 00 00 ................
0000000000effc04 ac 92 80 7c 28 04 00 00 - e4 01 00 00 8e 72 78 6c ...|(........rxl
0000000000effc14 ff ff ff ff a9 72 78 6c - aa 19 05 00 30 6d 0e 00 .....rxl....0m..
0000000000effc24 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000000effc34 00 b0 fd 7f e4 01 00 00 - 5c fc ef 00 92 4b 78 6c ........\....Kxl
0000000000effc44 01 00 00 00 70 fc ef 00 - ff ff ff ff ff 24 00 00 ....p........$..
0000000000effc54 08 fc ef 00 50 9c 0b 00 - 80 fc ef 00 fd 4c 78 6c ....P........Lxl
0000000000effc64 ff 24 00 00 ff ff ff ff - 00 00 00 00 28 04 00 00 .$..........(...
0000000000effc74 00 00 00 00 a0 48 0c 00 - 00 00 00 00 90 fc ef 00 .....H..........

*----> İş Parçacığı Kimliği 0x17f0 için Durum Dökümü <----*

eax=4ecc2ef0 ebx=01abfe7c ecx=0000cd2a edx=7c8feb94 esi=00000000 edi=7ffda000
eip=7c8feb94 esp=01abfe54 ebp=01abfef0 iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246

İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e

*----> Yığın Geri İzleme <----*
WARNING: Stack unwind information not available. Following frames may be wrong.
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll -
ChildEBP RetAddr Args to Child
01abfef0 77d395f9 00000002 01abff18 00000000 ntdll!KiFastSystemCallRet
01abff4c 77d396a8 00000001 01abffac ffffffff USER32!GetLastInputInfo+0x105
01abff68 4ecf5846 00000001 01abffac 00000000 USER32!MsgWaitForMultipleObjects+0x1f
01abffb4 7c80b50b 00000000 00000000 00efc304 gdiplus+0x45846
01abffec 00000000 4ecf57ed 00000000 00000000 kernel32!GetModuleFileNameA+0x1b4

*----> İşlenmemiş Yığın Dökümü <----*
0000000001abfe54 ab e9 8f 7c f2 94 80 7c - 02 00 00 00 7c fe ab 01 ...|...|....|...
0000000001abfe64 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001abfe74 02 00 00 00 00 00 00 00 - f4 02 00 00 10 03 00 00 ................
0000000001abfe84 00 00 00 00 00 00 00 00 - 31 55 cf 4e cd ab ba dc ........1U.N....
0000000001abfe94 00 00 00 00 dc fe ab 01 - 14 00 00 00 01 00 00 00 ................
0000000001abfea4 00 00 00 00 00 00 00 00 - 10 00 00 00 5a 88 d3 77 ............Z..w
0000000001abfeb4 c8 fe ab 01 2a 88 d3 77 - 00 a0 fd 7f 00 90 fd 7f ....*..w........
0000000001abfec4 10 a4 5f 00 00 00 00 00 - 7c fe ab 01 00 00 00 00 .._.....|.......
0000000001abfed4 02 00 00 00 70 fe ab 01 - 00 00 00 00 dc ff ab 01 ....p...........
0000000001abfee4 f3 99 83 7c 90 95 80 7c - 00 00 00 00 4c ff ab 01 ...|...|....L...
0000000001abfef4 f9 95 d3 77 02 00 00 00 - 18 ff ab 01 00 00 00 00 ...w............
0000000001abff04 ff ff ff ff 00 00 00 00 - 6c c9 d3 77 64 62 e3 4e ........l..wdb.N
0000000001abff14 00 00 00 00 f4 02 00 00 - 10 03 00 00 00 00 00 00 ................
0000000001abff24 00 00 00 00 24 a4 5f 00 - ea 89 d3 77 6c c9 d3 77 ....$._....wl..w
0000000001abff34 64 62 e3 4e 00 00 00 00 - 00 00 00 00 00 00 00 00 db.N............
0000000001abff44 00 90 fd 7f 10 03 00 00 - 68 ff ab 01 a8 96 d3 77 ........h......w
0000000001abff54 01 00 00 00 ac ff ab 01 - ff ff ff ff ff 04 00 00 ................
0000000001abff64 18 ff ab 01 b4 ff ab 01 - 46 58 cf 4e 01 00 00 00 ........FX.N....
0000000001abff74 ac ff ab 01 00 00 00 00 - ff ff ff ff ff 04 00 00 ................
0000000001abff84 00 00 00 00 04 c3 ef 00 - 00 00 00 00 3a 05 0a 00 ............:...

*----> İş Parçacığı Kimliği 0x17f4 için Durum Dökümü <----*

eax=7c91798d ebx=00000000 ecx=7c800000 edx=00000000 esi=00efd830 edi=00000020
eip=7c8feb94 esp=01d1ff9c ebp=01d1ffb4 iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246

İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e

*----> Yığın Geri İzleme <----*
WARNING: Stack unwind information not available. Following frames may be wrong.
ChildEBP RetAddr Args to Child
01d1ffb4 7c80b50b 00000000 00000020 00efd830 ntdll!KiFastSystemCallRet
01d1ffec 00000000 7c91798d 00000000 00000000 kernel32!GetModuleFileNameA+0x1b4

*----> İşlenmemiş Yığın Dökümü <----*
0000000001d1ff9c 5c d8 8f 7c d4 79 91 7c - 01 00 00 00 ac ff d1 01 \..|.y.|........
0000000001d1ffac 00 00 00 00 00 00 00 80 - ec ff d1 01 0b b5 80 7c ...............|
0000000001d1ffbc 00 00 00 00 20 00 00 00 - 30 d8 ef 00 00 00 00 00 .... ...0.......
0000000001d1ffcc 00 80 fd 7f 00 c6 e3 89 - c0 ff d1 01 90 c7 29 88 ..............).
0000000001d1ffdc ff ff ff ff f3 99 83 7c - 18 b5 80 7c 00 00 00 00 .......|...|....
0000000001d1ffec 00 00 00 00 00 00 00 00 - 8d 79 91 7c 00 00 00 00 .........y.|....
0000000001d1fffc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2000c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2001c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2002c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2003c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2004c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2005c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2006c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2007c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2008c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d2009c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d200ac 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d200bc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0000000001d200cc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................

*----> İş Parçacığı Kimliği 0x17f8 için Durum Dökümü <----*

eax=00000001 ebx=01d5efe8 ecx=01d5f100 edx=7c8feb94 esi=00000000 edi=7ffda000
eip=7c8feb94 esp=01d5efc0 ebp=01d5f05c iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00200246

İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e

*----> Yığın Geri İzleme <----*
WARNING: Stack unwind information not available. Following frames may be wrong.
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\System32\quartz.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\System32\qedit.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\System32\shmedia.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\SHELL32.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\SHLWAPI.dll -
ChildEBP RetAddr Args to Child
01d5f05c 77d395f9 00000002 01d5f084 00000000 ntdll!KiFastSystemCallRet
01d5f0b8 77d396a8 00000001 01d5f118 0000000a USER32!GetLastInputInfo+0x105
01d5f0d4 0269e34b 00000001 01d5f118 00000000 USER32!MsgWaitForMultipleObjects+0x1f
01d5f128 026dbeae 00000500 ffffffff 00000000 quartz+0x1e34b
01d5f148 026c6409 01d5f16c 01d5f420 01d5f420 quartz+0x5beae
01d5f178 026ae8f2 0003b618 01d5f420 0003a4c0 quartz!DllCanUnloadNow+0xd729
01d5f198 026e1868 0003b618 01d5f420 02681620 quartz!DllGetClassObject+0xb29b
01d5f3d0 026e1a77 028945a4 0003cd4c 00000000 quartz+0x61868
01d5f460 026e1b6b 028945a4 0003cd4c 00000000 quartz+0x61a77
01d5f488 026e1c36 028945a4 80040200 00000000 quartz+0x61b6b
01d5f4b0 026e1e62 028945a4 0003a55c 00000000 quartz+0x61c36
01d5f4c8 61253b6a 0003a4c0 028945a4 0003cd4c quartz+0x61e62
01d5f544 6125492b 000ebcf4 00000000 0003454c qedit+0x63b6a
01d5f58c 61254503 0003454c 00000000 00000000 qedit+0x6492b
01d5f630 5d00a4e1 0003454c 00000000 00000000 qedit+0x64503
01d5f6c0 5d00a555 01d5f6dc 00000000 01d5fbb4 shmedia+0xa4e1
01d5f6d0 7ca29cc1 00092390 0011e670 00000008 shmedia+0xa555
01d5fbb4 7ca29037 000e0c58 01d5fbe4 01d5fc24 SHELL32!SHGetRealIDL+0x1234
01d5fe64 7ca2e8fd 000ebce0 000c7c9c 000eefb8 SHELL32!SHGetRealIDL+0x5aa
01d5fe84 75f61b9a 000c7a70 75f61b18 75f60000 SHELL32!SHGetRealIDL+0x5e70
01d5fee0 77f69498 000ecae0 000ecaf0 77f6947b BROWSEUI!Ordinal113+0x1b9a
01d5fef8 7c917545 000ecaf0 7c96c3a0 000ecb08 SHLWAPI!Ordinal120+0xbf
01d5ff40 7c917583 77f6947b 000ecaf0 00000000 ntdll!RtlUpcaseUnicodeString+0x159
01d5ff60 7c917645 00000000 000ecaf0 000ecb08 ntdll!RtlUpcaseUnicodeString+0x197
01d5ff74 7c91761c 7c917569 00000000 000ecaf0 ntdll!RtlUpcaseUnicodeString+0x259
01d5ffb4 7c80b50b 00000000 00000001 00efdc68 ntdll!RtlUpcaseUnicodeString+0x230
01d5ffec 00000000 7c900760 00000000 00000000 kernel32!GetModuleFileNameA+0x1b4

*----> İşlenmemiş Yığın Dökümü <----*
0000000001d5efc0 ab e9 8f 7c f2 94 80 7c - 02 00 00 00 e8 ef d5 01 ...|...|........
0000000001d5efd0 01 00 00 00 00 00 00 00 - 1c f0 d5 01 00 00 00 00 ................
0000000001d5efe0 02 00 00 00 00 00 00 00 - 00 05 00 00 30 03 00 00 ............0...
0000000001d5eff0 31 00 43 00 4a f7 00 00 - 30 f0 d5 01 54 70 dc 77 1.C.J...0...Tp.w
0000000001d5f000 4a 05 00 00 24 f0 d5 01 - 14 00 00 00 01 00 00 00 J...$...........
0000000001d5f010 00 00 00 00 00 00 00 00 - 10 00 00 00 60 79 fe ff ............`y..
0000000001d5f020 ff ff ff ff f2 94 80 7c - 00 a0 fd 7f 00 70 fd 7f .......|.....p..
0000000001d5f030 ab 95 80 7c 1c f0 d5 01 - e8 ef d5 01 02 01 00 00 ...|............
0000000001d5f040 02 00 00 00 dc ef d5 01 - 00 05 00 00 30 ff d5 01 ............0...
0000000001d5f050 f3 99 83 7c 90 95 80 7c - 00 00 00 00 b8 f0 d5 01 ...|...|........
0000000001d5f060 f9 95 d3 77 02 00 00 00 - 84 f0 d5 01 00 00 00 00 ...w............
0000000001d5f070 0a 00 00 00 00 00 00 00 - 02 01 00 00 01 00 00 00 ................
0000000001d5f080 0a 00 00 00 00 05 00 00 - 30 03 00 00 00 70 fd 7f ........0....p..
0000000001d5f090 00 00 00 00 7c f0 d5 01 - 48 f0 d5 01 02 01 00 00 ....|...H.......
0000000001d5f0a0 01 00 00 00 3c f0 d5 01 - 00 00 00 00 00 00 00 00 ....<...........
0000000001d5f0b0 00 70 fd 7f 30 03 00 00 - d4 f0 d5 01 a8 96 d3 77 .p..0..........w
0000000001d5f0c0 01 00 00 00 18 f1 d5 01 - 0a 00 00 00 40 00 00 00 ............@...
0000000001d5f0d0 84 f0 d5 01 28 f1 d5 01 - 4b e3 69 02 01 00 00 00 ....(...K.i.....
0000000001d5f0e0 18 f1 d5 01 00 00 00 00 - 0a 00 00 00 40 00 00 00 ............@...
0000000001d5f0f0 c0 a4 03 00 c0 a4 03 00 - c0 a4 03 00 62 61 11 00 ............ba..

*----> İş Parçacığı Kimliği 0x17fc için Durum Dökümü <----*

eax=00000000 ebx=0202fde8 ecx=000e51c0 edx=00000516 esi=00000000 edi=7ffda000
eip=7c8feb94 esp=0202fdc0 ebp=0202fe5c iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246

İşlev: ntdll!KiFastSystemCallRet
7c8feb89 90 nop
7c8feb8a 90 nop
ntdll!KiFastSystemCall:
7c8feb8b 8bd4 mov edx,esp
7c8feb8d 0f34 sysenter
7c8feb8f 90 nop
7c8feb90 90 nop
7c8feb91 90 nop
7c8feb92 90 nop
7c8feb93 90 nop
ntdll!KiFastSystemCallRet:
7c8feb94 c3 ret
7c8feb95 8da42400000000 lea esp,[esp]
7c8feb9c 8d642400 lea esp,[esp]
7c8feba0 90 nop
7c8feba1 90 nop
7c8feba2 90 nop
7c8feba3 90 nop
7c8feba4 90 nop
ntdll!KiIntSystemCall:
7c8feba5 8d542408 lea edx,[esp+0x8]
7c8feba9 cd2e int 2e

*----> Yığın Geri İzleme <----*
WARNING: Stack unwind information not available. Following frames may be wrong.
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\msvcrt.dll -
ChildEBP RetAddr Args to Child
0202fe5c 77d395f9 00000002 0202fe84 00000000 ntdll!KiFastSystemCallRet
0202feb8 6c784b92 00000001 0202feec ffffffff USER32!GetLastInputInfo+0x105
0202fed8 6c784ddc 000004ff ffffffff 00000001 DUSER+0x34b92
0202ff0c 6c77e394 0202ff4c 00000000 00000000 DUSER+0x34ddc
0202ff2c 6c77a6f1 0202ff4c 00000000 00000000 DUSER!GetMessageExA+0x44
0202ff80 77c2a3b0 00000000 00000001 07ec0e0b DUSER!DUserStopAnimation+0xa505
0202ffb4 7c80b50b 00039420 00000001 07ec0e0b msvcrt!endthreadex+0xa9
0202ffec 00000000 77c2a341 00039420 00000000 kernel32!GetModuleFileNameA+0x1b4

*----> İşlenmemiş Yığın Dökümü <----*
000000000202fdc0 ab e9 8f 7c f2 94 80 7c - 02 00 00 00 e8 fd 02 02 ...|...|........
000000000202fdd0 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000202fde0 02 00 00 00 04 00 00 00 - b0 03 00 00 3c 03 00 00 ............<...
000000000202fdf0 0f 0e 01 0a e0 00 00 00 - 50 03 00 00 00 20 05 02 ........P.... ..
000000000202fe00 40 fe 02 02 b1 a2 76 6c - 14 00 00 00 01 00 00 00 @.....vl........
000000000202fe10 00 00 00 00 00 00 00 00 - 10 00 00 00 00 20 05 02 ............. ..
000000000202fe20 01 00 04 00 00 00 00 00 - 00 a0 fd 7f 00 60 fd 7f .............`..
000000000202fe30 a4 ff 02 02 00 00 00 00 - e8 fd 02 02 ff ff ff ff ................
000000000202fe40 02 00 00 00 dc fd 02 02 - 00 20 05 02 a4 ff 02 02 ......... ......
000000000202fe50 f3 99 83 7c 90 95 80 7c - 00 00 00 00 b8 fe 02 02 ...|...|........
000000000202fe60 f9 95 d3 77 02 00 00 00 - 84 fe 02 02 00 00 00 00 ...w............
000000000202fe70 ff ff ff ff 00 00 00 00 - 40 1d 0c 00 01 00 00 00 ........@.......
000000000202fe80 4c ff 02 02 b0 03 00 00 - 3c 03 00 00 8e 72 78 6c L.......<....rxl
000000000202fe90 ff ff ff ff a9 72 78 6c - bc 16 05 00 b8 51 0e 00 .....rxl.....Q..
000000000202fea0 01 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000202feb0 00 60 fd 7f 3c 03 00 00 - d8 fe 02 02 92 4b 78 6c .`..<........Kxl
000000000202fec0 01 00 00 00 ec fe 02 02 - ff ff ff ff ff 04 00 00 ................
000000000202fed0 84 fe 02 02 ff ff ff ff - 0c ff 02 02 dc 4d 78 6c .............Mxl
000000000202fee0 ff 04 00 00 ff ff ff ff - 01 00 00 00 b0 03 00 00 ................
000000000202fef0 00 00 00 00 00 00 00 00 - 20 94 03 00 01 00 00 00 ........ .......

*----> İş Parçacığı Kimliği 0xd0c için Durum Dökümü <----*

eax=0000c370 ebx=00142370 ecx=0014eff8 edx=00090608 esi=00135ff0 edi=00000001
eip=00142370 esp=0283ed7c ebp=0283ef48 iopl=0 nv up ei pl nz na pe nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00200202

İşlev: <nosymbols>
00142366 c3 ret
00142367 90 nop
00142368 90 nop
00142369 90 nop
0014236a 90 nop
0014236b 90 nop
0014236c 90 nop
0014236d 90 nop
0014236e 90 nop
0014236f 90 nop
HATA ->00142370 8b442408 mov eax,[esp+0x8] ss:0023:0283ed84=00000001
00142374 85c0 test eax,eax
00142376 750a jnz 00142382
00142378 e893ffffff call 00142310
0014237d e88effffff call 00142310
00142382 b801000000 mov eax,0x1
00142387 c20c00 ret 0xc
0014238a 90 nop
0014238b 90 nop
0014238c 90 nop
0014238d 90 nop

*----> Yığın Geri İzleme <----*
*** WARNING: Unable to verify checksum for C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvljpg20.dll
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\Program Files\ACE Mega CoDecS Pack\SystemS\Pegasus\pvljpg20.dll -
WARNING: Stack unwind information not available. Following frames may be wrong.
ChildEBP RetAddr Args to Child
0283ef48 03010614 0011c848 535359d8 0000f024 0x142370
0283ef74 0300f668 03000000 0011c848 0003d26c pvljpg20+0x10614
0283efb0 03005b74 0000f622 00000014 00000000 pvljpg20+0xf668
00000000 00000000 00000000 00000000 00000000 pvljpg20!DllUnregisterServer+0x144

*----> İşlenmemiş Yığın Dökümü <----*
000000000283ed7c f5 16 01 03 f0 5f 13 00 - 01 00 00 00 00 00 00 00 ....._..........
000000000283ed8c cc 80 00 00 d8 59 02 03 - 00 00 00 00 00 00 00 03 .....Y..........
000000000283ed9c 00 00 00 00 70 e0 83 02 - 28 05 03 00 00 00 00 00 ....p...(.......
000000000283edac 00 00 00 00 03 00 00 00 - 40 06 09 00 08 00 00 00 ........@.......
000000000283edbc 09 04 00 00 50 45 00 00 - 4c 01 05 00 5b 22 28 3e ....PE..L...["(>
000000000283edcc 00 00 00 00 00 00 00 00 - e0 00 0e 21 0b 01 06 00 ...........!....
000000000283eddc 00 e0 00 00 00 90 00 00 - 00 00 00 00 70 c3 00 00 ............p...
000000000283edec 00 10 00 00 00 f0 00 00 - 00 00 00 10 00 10 00 00 ................
000000000283edfc 00 10 00 00 04 00 00 00 - 00 00 00 00 04 00 00 00 ................
000000000283ee0c 00 00 00 00 00 80 01 00 - 00 10 00 00 00 00 00 00 ................
000000000283ee1c 02 00 00 00 00 00 10 00 - 00 10 00 00 00 00 10 00 ................
000000000283ee2c 00 10 00 00 00 00 00 00 - 10 00 00 00 c0 f0 00 00 ................
000000000283ee3c 4a 00 00 00 24 f0 00 00 - 28 00 00 00 00 60 01 00 J...$...(....`..
000000000283ee4c a0 03 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000283ee5c 00 00 00 00 00 70 01 00 - 14 05 00 00 00 00 00 00 .....p..........
000000000283ee6c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000283ee7c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000283ee8c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 f0 00 00 ................
000000000283ee9c 18 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
000000000283eeac 00 00 00 00 00 00 00 00 - 00 00 00 00 4d 5a 90 00 ............MZ..
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
11 Jul 2006, 4:46pm
it goes like this...In the main window of drwtsn32.exe in application errors it says:"C:\Windows\explorer.exe c0000005 <nosymbols>(00142370)" when i double click on it the error report above shows up???I will send MS an e-mail and try to get an answer.But please you don't stop helping either.By the way im using original Xp home edition with sp2.
mtunick
I've turned to the dork side
mtunick
191 Posts
11 Jul 2006, 6:25pm
Ok when you right click on c drive, can you explore? Also go to Folder Options, File Types, and tell me what drive is set to open with. Basically at this point I would suggest just doing a System Restore, or getting professional help from Microsoft.

BEFORE DOING ANYTHING BELOW THIS POINT, KEEP IN MIND, I AM NOT AN EXPERT BY ANY MEANS. DO THIS AT YOUR OWN RISK!

The problem you have might be being caused by a common problem with AUTORUN.inf. To fix this you must delete autorun. To do this shutdown, boot in MS-DOS mode, type
CD\
DEL AUTORUN.INF
WIN
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
11 Jul 2006, 8:34pm
i can explore but for a few seconds.i open C: drive it shows up about 1 second then drwtsn32.exe shows up and the windows of C: drive closes.If you are asking me that where i installed windows it's in C: drive.I have already sent an e mail to MS.I don't wanna risk that because i don't wanna format my xp again.I want a solution from you or MS.If there is a problem there is a solution too.Formatting is not a solutioun for me cause i formatted xp like everyday in the past.And all xp s i installed want activation and i got to do this with phone Soon the personal in MS gonna swear at me i think
mtunick
I've turned to the dork side
mtunick
191 Posts
11 Jul 2006, 9:13pm
System Restore does not format your HD is that's what you're thinking. 'SR' resets the values in your registry to either the default setting or your last place of saving. So in doing so it could fix your problems but not delete your information.
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
11 Jul 2006, 9:17pm
i know how sr works but whenever i try to apply system restore it couldn't do it always shows me an error message that system couldn't been restored.I tried it so much but always it gave me error message in windows startup
mtunick
I've turned to the dork side
mtunick
191 Posts
11 Jul 2006, 10:23pm
Well I guess I'm done then. I am completely out of ideas. Sorry I couldn't help you. Hopefully someone else will be along to address your problem. Good Luck!!!
ilkeamasya
Getting settled in
ilkeamasya
9 Posts
12 Jul 2006, 7:15am
thanx for alll your ideas and help!1Thank you i have sebt an email to MS i guess they will give me the answer.thanx for all.
Similar Threads
Thread Thread Starter Forum Replies Last Post
trying to reformat scsi hard drive, will not detect my drive brayf General Hardware 41 27 Aug 2009 1:42pm
Cant install windows on sata drive mpavao81 General Hardware 2 7 Dec 2005 8:39am
KT2 Combo will not boot from floppy drive davecoppo General Software 3 4 Jan 2005 5:00pm
Can't open drive? bothered Networking & Security 13 25 Aug 2003 5:35pm

Go Back   Icrontic Forums > Malware Help > Spyware & Virus Removal > Resolved / Inactive
Reload this Page Can't open My C: Drive!!!:'( PLease Help!!
Jump to
This Thread Search this Thread
Search this Thread:

Advanced Search

Today's Posts - Mark All Read - Contact Us - Icrontic.com - Archive - Top

Current time: 4:38am (GMT)
Powered by vBulletin®
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
Get Vanilla instead. Trust me.