> PENGUMUMAN <

**fajar.anggiawan** · 06-09-2011 11:07:10

fajar.anggiawan
Super ModeratoЯ
Offline

Registered: 02-04-2010
Posts: 443
User Karma: 18

Topic: PC Media Asgard Alpha & PC Media Asgard Beta

Contoh screen-shoot tampilan fitur-fitur baru PC Media Asgard Alpha dapat dilihat di bawah.

Silahkan diuji coba, didiskusikan, dan dilaporkan di sini hasilnya demi penyempurnaan PCMAV. Mulai dari penggunaan fitur baru, kecepatan, penggunaan memory, LinkProtector yang telah disempurnakan dan sebagainya dibandingkan dengan PCMAV 5.4 atau yang terbaru sebagai bahan acuan kami.

Tampilan utama:

Tampilan utama fitur baru Extensions Manager:

Contoh tampilan salah satu Extension berupa Registry Fixer:

Contoh tampilan salah satu Extension berupa Duplicate Files Finder:

Link: hxxp://www.sendspace.com/file/h4l7y5
Pass: 86e19ef1e1a786f65961f86dcb19c1cd

**Fajar** · 06-09-2011 12:19:11

Fajar
Trial Member
Offline

Registered: 18-06-2010
Posts: 39

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Coba dan tes dulu...
terima kasih...

**MuamarKudo** · 06-09-2011 14:18:10

MuamarKudo
Senior Member
Offline

From: 7.37 S, 109.4 E
Registered: 02-04-2010
Posts: 356
User Karma: 3

Re: PC Media Asgard Alpha & PC Media Asgard Beta

yeah... masih anget nih, ijin coba gan!

- Nothing -

**indraramadhan094** · 06-09-2011 22:40:42

indraramadhan094
Moderator
Offline

From: Kota Tangerang, Banten
Registered: 04-04-2010
Posts: 550
User Karma: 15

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Izin coba, mudah2an dapat mendiskusikan solusi dari permasalahan yang saya temukan dan masukan untuk PC Media Asgard [Alpha].

Dari gambar diatas, apakah hanya drive A dan Removable yang Autorun di remove? Drive C dan D tidak?

Koq PCMAV.exe masih bisa di kill sama Task Manager @ Extension Manager PCMAV? Trus bisa di kill sama CMD (Taskkill) ??

Ketika saya terminate aips.exe, process aips.exe di Task Manager Windows sudah hilang. Tapi koq di Extension Task Manager PCMAV masih ada Processnya? Saya tunggu2 gak hilang2 di daftar. Pas saya refresh baru hilang. Kenapa Ketika di terminate, Tidak otomatis refresh? Lalu ketika refresh loadingnya lama, berbeda dengan Task Manager Windows. hehehe...
Saran saya fitur Extension Task Manager PCMAV diperlengkap lagi dengan performance CPU dan Networking seperti Task Manager Windows serta fitur Tambahan lain seperti Process hacker atau Process Manager.

Untuk View on Map "TCP Viewer" keren, tapi apakah akurat 100% Untuk Lokasinya?

Lapor, OS saya XP SP2. PCMAV.exe menggunakan Compability Mode Windows 2000. Ketika Membuka Extension Manager dan Anti Keystroke PCMAV.exe ke close sendiri, Process Hilang.

Apakah Ketika PCMAV Asgard Final direlease, Apakah Plugin di Tambah? Maaf Kalau kebanyakan tanya. hehehe...

Error tersebut saya dapatkan ketika sesudah menggunakan Extension "Duplicate Files Finder", pada saat saya close extension.

Koq gak bisa ya Secure Delete Folder Sm*d-Lock? Gak ada Reaksinya. Untuk folder biasa berjalan Sukses.

Dari gambar diatas, Extension "TCP Viewer" PCMAV koq hasilnya berbeda dengan program TCPView Sysinternal?

Gambar tersebut merupakan Hasil penggunaan Memory PCMAV (Dengan Clamav 0.91) dan ExtMan, Pada saat Mengambil Screenshot Saya sedang menggunakan Extension Duplicate File Finder yang sedang aktif digunakan. Untuk Kejelasan Waktu Pengambilan ScreenShot setelah booting tidak dapat saya jelaskan karena programnya belum diinstal. Untuk Menjelaskan Perbedaan Penggunaan Memory, Kecepatan Scanning, dsb dengan PCMAV Valhalla belum Bisa. -_-

Mau tanya, di PC saya Pengaya Google Chrome bermasalah dan sempat Membuat Not Responding sebentar pada Mozilla Firefox ketika PCMAV Asgard Aktif. Apakah Benar PCMAV Asgard merupakan penyebabnya? Ketika PCMAV Asgard tidak dalam keadaan Aktif, Google Chrome saya tidak bermasalah...

date/time         : 2011-09-08, 10:10:50, 859ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 32 minutes 39 seconds
program up time   : 14 minutes 43 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 709/958 MB (free/total)
free disk space   : (C:) 61,13 GB
display mode      : 1024x768, 32 bit
process id        : $25c
allocated memory  : 48,15 MB
executable        : PCMAV.exe
exec. date/time   : 2011-09-06 11:01
version           : 6.0.0.0
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
PCMAV.exe.mad     : $00026e0c, $202e3f26, $1c644614
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $989739ed, $d339bcf6, $d339bcf6
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 0060B160 in module 'PCMAV.exe'. Read of address 00000004.

main thread ($5a4):
0060b160 +000 PCMAV.exe  segment%276 public%12303
0068402e +006 PCMAV.exe  segment%291 public%13036
005a4bb9 +015 PCMAV.exe  segment%206 public%10420
005a4c64 +018 PCMAV.exe  segment%206 public%10424
005a5109 +021 PCMAV.exe  segment%206 public%10429
00475ecc +014 PCMAV.exe  segment%31  public%3532
77d4bcc7 +00a USER32.dll             DispatchMessageA
004c47f4 +0fc PCMAV.exe  segment%58  public%6000
004c4816 +00a PCMAV.exe  segment%58  public%6001
00683755 +16d PCMAV.exe  segment%291 public%13032
004a704c +064 PCMAV.exe  segment%54  public%4998
0048c55e +01e PCMAV.exe  segment%43  public%4236
0048c65c +00c PCMAV.exe  segment%43  public%4242
004a6b47 +2bb PCMAV.exe  segment%54  public%4991
004aab3e +4fa PCMAV.exe  segment%54  public%5138
0048c408 +06c PCMAV.exe  segment%43  public%4230
004a67d4 +024 PCMAV.exe  segment%54  public%4987
004aac8f +023 PCMAV.exe  segment%54  public%5140
004ab65b +00b PCMAV.exe  segment%54  public%5147
004a6b47 +2bb PCMAV.exe  segment%54  public%4991
004aab3e +4fa PCMAV.exe  segment%54  public%5138
004a9529 +02d PCMAV.exe  segment%54  public%5107
004aa268 +02c PCMAV.exe  segment%54  public%5133
00475ecc +014 PCMAV.exe  segment%31  public%3532
77d4b7a6 +044 USER32.dll             SendMessageW
77d4e361 +016 USER32.dll             CallWindowProcA
004aac3b +0d7 PCMAV.exe  segment%54  public%5139
004a746c +010 PCMAV.exe  segment%54  public%5015
004a6b47 +2bb PCMAV.exe  segment%54  public%4991
004aab3e +4fa PCMAV.exe  segment%54  public%5138
0048c408 +06c PCMAV.exe  segment%43  public%4230
004aa268 +02c PCMAV.exe  segment%54  public%5133
00475ecc +014 PCMAV.exe  segment%31  public%3532
77d4bcc7 +00a USER32.dll             DispatchMessageA
004c47f4 +0fc PCMAV.exe  segment%58  public%6000
004c482e +00a PCMAV.exe  segment%58  public%6002
004c4b3f +0b3 PCMAV.exe  segment%58  public%6007
0069027d +1c9 PCMAV.exe  segment%423 public%13231

thread $6d0 (TWndProc): <suspended>
0066790f +1f PCMAV.exe segment%282 public%12790

thread $218:
7c90e286 +00a ntdll.dll                NtReadFile
7c80186f +061 kernel32.dll             ReadFile
005b674d +1e5 PCMAV.exe    segment%208 public%10609
00452b5d +00d PCMAV.exe    segment%23  public%2340
00452bc7 +037 PCMAV.exe    segment%23  public%2341
>> created by thread $794 at:
005b69bc +22c PCMAV.exe    segment%208 public%10610

thread $688 (TRegMonitorThread):
7c90e9be +0a ntdll.dll                NtWaitForSingleObject
7c8025d5 +85 kernel32.dll             WaitForSingleObjectEx
7c80253d +0d kernel32.dll             WaitForSingleObject
00678f4e +12 PCMAV.exe    segment%288 public%12949
00452c7b +2b PCMAV.exe    segment%23  public%2342
00474758 +34 PCMAV.exe    segment%31  public%3425
004056f4 +28 PCMAV.exe    segment%0   public%250
00452b5d +0d PCMAV.exe    segment%23  public%2340
00452bc7 +37 PCMAV.exe    segment%23  public%2341
>> created by main thread ($5a4) at:
00678e38 +18 PCMAV.exe    segment%288 public%12946

thread $708 (TRegMonitorThread):
7c90e9be +0a ntdll.dll                NtWaitForSingleObject
7c8025d5 +85 kernel32.dll             WaitForSingleObjectEx
7c80253d +0d kernel32.dll             WaitForSingleObject
00678f4e +12 PCMAV.exe    segment%288 public%12949
00452c7b +2b PCMAV.exe    segment%23  public%2342
00474758 +34 PCMAV.exe    segment%31  public%3425
004056f4 +28 PCMAV.exe    segment%0   public%250
00452b5d +0d PCMAV.exe    segment%23  public%2340
00452bc7 +37 PCMAV.exe    segment%23  public%2341
>> created by main thread ($5a4) at:
00678e38 +18 PCMAV.exe    segment%288 public%12946

thread $5dc:
7c90d85a +a ntdll.dll  NtDelayExecution

thread $35c:
7c90e9a9 +a ntdll.dll  NtWaitForMultipleObjects

thread $5b8:
7c90e9a9 +0a ntdll.dll               NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll            WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll            WaitForMultipleObjects
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by main thread ($5a4) at:
769c8951 +00 userenv.dll

thread $724:
7c90e286 +00a ntdll.dll                NtReadFile
7c80186f +061 kernel32.dll             ReadFile
005b674d +1e5 PCMAV.exe    segment%208 public%10609
00452b5d +00d PCMAV.exe    segment%23  public%2340
00452bc7 +037 PCMAV.exe    segment%23  public%2341
>> created by thread $608 at:
005b69bc +22c PCMAV.exe    segment%208 public%10610

thread $b8:
7c90d85a +0a ntdll.dll             NtDelayExecution
00452b5d +0d PCMAV.exe  segment%23 public%2340
00452bc7 +37 PCMAV.exe  segment%23 public%2341
>> created by main thread ($5a4) at:
77e8760d +00 RPCRT4.dll

thread $7e8:
7c90e319 +a ntdll.dll  NtRemoveIoCompletion

thread $448:
7c90e319 +0a ntdll.dll               NtRemoveIoCompletion
7c80cbd3 +23 kernel32.dll            GetQueuedCompletionStatus
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by thread $b8 at:
77e8760d +00 RPCRT4.dll

thread $2e8 (TgtTimerThread):
7c90e9be +0a ntdll.dll               NtWaitForSingleObject
7c8025d5 +85 kernel32.dll            WaitForSingleObjectEx
7c80253d +0d kernel32.dll            WaitForSingleObject
004d1e74 +10 PCMAV.exe    segment%64 public%6319
00452c7b +2b PCMAV.exe    segment%23 public%2342
00474758 +34 PCMAV.exe    segment%31 public%3425
004056f4 +28 PCMAV.exe    segment%0  public%250
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by main thread ($5a4) at:
004d1dfb +1b PCMAV.exe    segment%64 public%6316

thread $4dc (TgtTimerThread):
7c90e9be +0a ntdll.dll               NtWaitForSingleObject
7c8025d5 +85 kernel32.dll            WaitForSingleObjectEx
7c80253d +0d kernel32.dll            WaitForSingleObject
004d1e74 +10 PCMAV.exe    segment%64 public%6319
00452c7b +2b PCMAV.exe    segment%23 public%2342
00474758 +34 PCMAV.exe    segment%31 public%3425
004056f4 +28 PCMAV.exe    segment%0  public%250
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by main thread ($5a4) at:
004d1dfb +1b PCMAV.exe    segment%64 public%6316

thread $38c (TgtTimerThread):
7c90e9be +0a ntdll.dll               NtWaitForSingleObject
7c8025d5 +85 kernel32.dll            WaitForSingleObjectEx
7c80253d +0d kernel32.dll            WaitForSingleObject
004d1e74 +10 PCMAV.exe    segment%64 public%6319
00452c7b +2b PCMAV.exe    segment%23 public%2342
00474758 +34 PCMAV.exe    segment%31 public%3425
004056f4 +28 PCMAV.exe    segment%0  public%250
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by main thread ($5a4) at:
004d1dfb +1b PCMAV.exe    segment%64 public%6316

processes:
000 Idle         0   0
004 System       0   0   normal
09c smss.exe     0   0   normal C:\WINDOWS\system32
0d0 csrss.exe    43  48  normal C:\WINDOWS\system32
0e8 winlogon.exe 35  13  high   C:\WINDOWS\system32
114 services.exe 4   1   normal C:\WINDOWS\system32
120 lsass.exe    4   2   normal C:\WINDOWS\system32
1bc svchost.exe  4   1   normal C:\WINDOWS\system32
1e8 svchost.exe  4   1   normal C:\WINDOWS\system32
220 svchost.exe  4   1   normal C:\WINDOWS\system32
2f8 Explorer.EXE 251 109 normal C:\WINDOWS
374 taskmgr.exe  111 127 high   C:\WINDOWS\system32
25c PCMAV.exe    240 161 normal C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha

cpu registers:
eax = 00000000
ebx = 02856080
ecx = 04878460
edx = 02856080
esi = 0012f46c
edi = 00000401
eip = 0060b160
esp = 0012f444
ebp = 0012f47c

stack dump:
0012f444  33 40 68 00 bc 4b 5a 00 - 80 60 85 02 67 4c 5a 00  3@h..KZ..`..gLZ.
0012f454  80 60 85 02 0e 51 5a 00 - e4 f4 12 00 01 0e 58 01  .`...QZ.......X.
0012f464  00 00 00 00 ce 5e 47 00 - 01 04 00 00 00 00 00 00  .....^G.........
0012f474  00 00 00 00 00 00 00 00 - a8 f4 12 00 09 87 d4 77  ...............w
0012f484  ac 00 06 00 01 04 00 00 - 00 00 00 00 00 00 00 00  ................
0012f494  01 0e 58 01 cd ab ba dc - 00 00 00 00 e4 f4 12 00  ..X.............
0012f4a4  01 0e 58 01 10 f5 12 00 - eb 87 d4 77 01 0e 58 01  ..X........w..X.
0012f4b4  ac 00 06 00 01 04 00 00 - 00 00 00 00 00 00 00 00  ................
0012f4c4  ac f5 12 00 a4 f5 12 00 - a8 9f aa 00 14 00 00 00  ................
0012f4d4  01 00 00 00 00 00 00 00 - 00 00 00 00 10 00 00 00  ................
0012f4e4  00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
0012f4f4  00 00 00 00 c4 f4 12 00 - 68 f0 12 00 60 f5 12 00  ........h...`...
0012f504  94 04 d7 77 08 88 d4 77 - ff ff ff ff 70 f5 12 00  ...w...w....p...
0012f514  a5 89 d4 77 00 00 00 00 - 01 0e 58 01 ac 00 06 00  ...w......X.....
0012f524  01 04 00 00 00 00 00 00 - 00 00 00 00 bc 9f aa 00  ................
0012f534  01 00 00 00 a4 f5 12 00 - d0 99 27 01 01 00 00 00  ..........'.....
0012f544  a4 f5 12 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
0012f554  00 00 00 00 38 f5 12 00 - 68 f0 12 00 1c f9 12 00  ....8...h.......
0012f564  94 04 d7 77 c8 89 d4 77 - ff ff ff ff 80 f5 12 00  ...w...w........
0012f574  cc bc d4 77 a4 f5 12 00 - 01 00 00 00 ac 00 06 00  ...w............

disassembling:
0060b160 public segment%276.public%12303 (PCMAV.exe):  ; function entry point
0060b160 > mov     eax, [eax+4]
0060b163   call    +$118 ($60b280)        ; segment%276.public%12305 (PCMAV.exe)
0060b163
0060b168   ret


Bug Report tersebut saya dapatkan setelah cancel scan.
-----------------------------------------------------------------------------------------------------------

Event Type:    Error
Event Source:    Application Hang
Event Category:    (101)
Event ID:    1002
Date:        08/09/2011
Time:        14:06:28
User:        N/A
Computer:    INTER1
Description:
Hanging application PCMAV.bat, version 6.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Data:
0000: 41 70 70 6c 69 63 61 74   Applicat
0008: 69 6f 6e 20 48 61 6e 67   ion Hang
0010: 20 20 50 43 4d 41 56 2e     PCMAV.
0018: 62 61 74 20 36 2e 30 2e   bat 6.0.
0020: 30 2e 30 20 69 6e 20 68   0.0 in h
0028: 75 6e 67 61 70 70 20 30   ungapp 0
0030: 2e 30 2e 30 2e 30 20 61   .0.0.0 a
0038: 74 20 6f 66 66 73 65 74   t offset
0040: 20 30 30 30 30 30 30 30    0000000
0048: 30                        0       

Data:
0000: 6c707041 74616369 206e6f69 676e6148
0010: 43502020 2e56414d 20746162 2e302e36
0020: 20302e30 68206e69 61676e75 30207070
0030: 302e302e 6120302e 666f2074 74657366
0040: 30303020 30303030 30

Log diatas merupakan penjelasan tentang PCMAV Asgard yang error.

Mohon maaf bila ada kata2 yang kurang berkenaan dan kurang sopan...

Last edited by indraramadhan094 (08-09-2011 21:11:08)

Like Fan Page Majalah PC Media : http://www.facebook.com/pages/Majalah-P … 1773385582
Follow Akun Twitter Majalah PC Media : https://twitter.com/PCMedia_ID

**hous3b4d** · 08-09-2011 20:21:53

hous3b4d
Trial Member
Offline

Registered: 24-06-2010
Posts: 47

Re: PC Media Asgard Alpha & PC Media Asgard Beta

@atas.. keknya udah rame banget yg nyoba..

klo pertanyaan yg Chrome bermasalah pas PCMAV jalan, udah dari versi lama PCMAV, klo PCMAV jalan ntar chromenya bermasalah jadi blue page..

**indraramadhan094** · 08-09-2011 20:47:43

indraramadhan094
Moderator
Offline

From: Kota Tangerang, Banten
Registered: 04-04-2010
Posts: 550
User Karma: 15

Re: PC Media Asgard Alpha & PC Media Asgard Beta

hous3b4d wrote:

@atas.. keknya udah rame banget yg nyoba..
klo pertanyaan yg Chrome bermasalah pas PCMAV jalan, udah dari versi lama PCMAV, klo PCMAV jalan ntar chromenya bermasalah jadi blue page..

GC ane galat klo pake pcmav. pertama-tama pas buka FB scrool gak bisa digerakin, trus agak not responding. kadang galat tiba2 dan layar hitam atau pengaya google chrome bermasalah dan berusaha untuk dihentikan penggunaannya.

Like Fan Page Majalah PC Media : http://www.facebook.com/pages/Majalah-P … 1773385582
Follow Akun Twitter Majalah PC Media : https://twitter.com/PCMedia_ID

**peace.wanderer** · 08-09-2011 21:35:33

peace.wanderer
Junior Member
Offline

From: Somewhere in earth
Registered: 02-04-2010
Posts: 231
User Karma: 3

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Wah baru ngecek nih, ijin download ya min

Even after the darkest nights, morning always comes..

**meong** · 08-09-2011 23:26:13

meong
Senior Member
Offline

Registered: 07-04-2010
Posts: 326
User Karma: 30

Re: PC Media Asgard Alpha & PC Media Asgard Beta

ada sdk buat extentionya yah ?..

btw untuk chrome apa mungkin karena pengaruh hook ?

**fajar.anggiawan** · 09-09-2011 00:54:43

fajar.anggiawan
Super ModeratoЯ
Offline

Registered: 02-04-2010
Posts: 443
User Karma: 18

Re: PC Media Asgard Alpha & PC Media Asgard Beta

indraramadhan094 wrote:

Dari gambar diatas, apakah hanya drive A dan Removable yang Autorun di remove? Drive C dan D tidak?

Setiap file autorun.inf di harddisk (fixed drive) dan removable drive akan di scan. Berdasarkan gambar, apa memang file autorun.inf di drive A?

indraramadhan094 wrote:

Koq PCMAV.exe masih bisa di kill sama Task Manager @ Extension Manager PCMAV? Trus bisa di kill sama CMD (Taskkill) ??

Iya, untuk saat ini memang masih bisa di-kill, selanjutnya akan diaktifkan kembali fitur "anti-kill".

indraramadhan094 wrote:

Tidak otomatis refresh? Lalu ketika refresh loadingnya lama, berbeda dengan Task Manager Windows

Iya refresh tidak otomatis. Kenapa lama? Karena yang ditampilkan ekstension ini berbeda bukan dengan yang ditampilkan Task Manager. Terutaman, perhitungan untuk menduga proses yang mencurigakan akan sedikit membutuhkan waktu. Jika ada proses yang berwana merah, maka proses tersebut sangat mencurigakan.

indraramadhan094 wrote:

Lapor, OS saya XP SP2. PCMAV.exe menggunakan Compability Mode Windows 2000. Ketika Membuka Extension Manager dan Anti Keystroke PCMAV.exe ke close sendiri, Process Hilang.

Nanti akan dicoba terlebih dahulu. Memang ada cara spesial untuk memanggil kedua program tersebut untuk mencegah dijalankan secara biasa/manual, mungkin saja Compatibility Mode mengganggunya. Kenapa menggunakan Compability Mode Windows 2000? Asgard atau PCMAV lebih banyak diujicoba di Windows 7 dan XP SP3

indraramadhan094 wrote:

Apakah Ketika PCMAV Asgard Final direlease, Apakah Plugin di Tambah? Maaf Kalau kebanyakan tanya. hehehe...

Ada kemungkinan ekstension akan ditambah, apalagi nantinya akan disediakan SDK agar pihak lain juga dapat membuatnya juga.

indraramadhan094 wrote:

Error tersebut saya dapatkan ketika sesudah menggunakan Extension "Duplicate Files Finder", pada saat saya close extension.

Ya, sepertinya ketika mengklik tombol Stop pada DFF, butuh waktu sekian detik agar tidak terjadi error. Teknisnya, ada antrian thread yang belum selesai tereksekusi. Dalam waktu yang singkat ini, mudah-mudahan kami dapat memperbaikinya dengan cepat.

indraramadhan094 wrote:

Koq gak bisa ya Secure Delete Folder Sm*d-Lock? Gak ada Reaksinya. Untuk folder biasa berjalan Sukses.

Secure Delete bukan/belum dirancang untuk menghapus folder yang tidak lazim.

indraramadhan094 wrote:

Dari gambar diatas, Extension "TCP Viewer" PCMAV koq hasilnya berbeda dengan program TCPView Sysinternal?

Dimana letak perbedaannya? Sudah mencoba menu refresh?

indraramadhan094 wrote:

Mau tanya, di PC saya Pengaya Google Chrome bermasalah dan sempat Membuat Not Responding sebentar pada Mozilla Firefox ketika PCMAV Asgard Aktif. Apakah Benar PCMAV Asgard merupakan penyebabnya? Ketika PCMAV Asgard tidak dalam keadaan Aktif, Google Chrome saya tidak bermasalah

Untuk Google Chrome sendiri kadang memang bermasalah misalnya yaitu halaman yang crash dan solusinya yaitu dengan melakukan refresh pada halaman tersebut. Untuk FF sendiri, faktor antivirus/firewall lain dapat juga membuat bentrok dengan proteksi pada Asgard. Kami masih menyempurnakan hal ini dan kemungkinan besar pada versi Final akan sudah direvisi agar tidak bentrok dengan program sekuriti lain.

Terimas kasih banyak untuk respon dari indraramadhan094 ya

meong wrote:

ada sdk buat extentionya yah ?

Ada, cuma sementara mungkin hanya SDK untuk Delphi. Ini ada contoh SDK Delphi versi "unofficial " ;

library YourExtension;

uses
  SysUtils,
  Classes,
  Windows,
  uMain in 'uMain.pas' {MainForm};

var
  OwnerApp: Integer;

function DoName: Pansichar; far;
begin
  Result := 'YourExtName';
end;

function DoAuthor: Pansichar; far;
begin
  Result := 'YourName';
end;

function DoDescription: Pansichar; far;
begin
  Result := 'YourDescription'
end;

procedure DoMain; far;
var
  FDialog: TMainForm;
begin
  FDialog := TMainForm.Create(nil);
  FDialog.show;
  {
   // Don't forget to free it 
   procedure TMainForm.FormClose(Sender: TObject; var Action: TCloseAction);
   begin
     Action := caFree;
   end;  
  } 
end;

procedure DoInit(Owner: Integer); far;
begin
  OwnerApp := Owner;
end;

exports
  DoName, DoAuthor, DoMain, DoInit, DoDescription;

begin

end.

Extension tidak dapat dibaca oleh ExtMan tanpa validasi khusus dari kami.

meong wrote:

btw untuk chrome apa mungkin karena pengaruh hook ?

Ya. Bentrok dengan "sandbox" pada Chrome. Link berikut menampilkan aplikasi2 yang juga "bentrok" hxxp://chromium-browser.sourcearchive.com/documentation/5.0.375.99~r51029-1/sandbox__policy_8cc-source.html

**phrozen** · 09-09-2011 02:17:42

phrozen
VIP
Offline

From: Wammy House
Registered: 06-04-2010
Posts: 817
User Karma: 16

Re: PC Media Asgard Alpha & PC Media Asgard Beta

delphi sdk hhihi. sayang leppi di beli temen huaaaa

"If you measured good and evil deeds by current laws, I would be responsible for many crimes." ~ L

**anjing_hitam** · 09-09-2011 08:52:52

anjing_hitam
Trial Member
Offline

Registered: 09-04-2010
Posts: 18
User Karma: 1

Re: PC Media Asgard Alpha & PC Media Asgard Beta

ijin ikutan testing ya ....

**hari** · 09-09-2011 09:00:01

hari
Senior Member
Offline

Registered: 03-04-2010
Posts: 320
User Karma: 25

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Saya koq ngga bisa buka Extension Manager yaa

Padahal OS nya XP SP3 + update terbaru hingga Agustus 2011 (pake Update Packnya RyanVM).
Dipasang di VirtualBox 4.1.2 dan isinya hanya XP + Asgard

Setiap pilih Extensions Manager ngga muncul apa-apa..
Icon bebek - show window sih berfungsi dengan baik...

**indraramadhan094** · 09-09-2011 09:34:54

indraramadhan094
Moderator
Offline

From: Kota Tangerang, Banten
Registered: 04-04-2010
Posts: 550
User Karma: 15

Re: PC Media Asgard Alpha & PC Media Asgard Beta

fajar.anggiawan wrote:

Setiap file autorun.inf di harddisk (fixed drive) dan removable drive akan di scan. Berdasarkan gambar, apa memang file autorun.inf di drive A?

Di Drive A Saya tertulis Object will be Deleted, Padahal saya tidak memasukan floppy disk di PC saya. Program ini juga dapat menghapus folder proteksi autorun.inf, sayang tidak dapat menghapus dibagian sub folder.

fajar.anggiawan wrote:

Dimana letak perbedaannya? Sudah mencoba menu refresh?

Sudah, hanya muncul ekrn.exe. sedangkan dari TCPView sysinternal muncul Google Chrome, YM!, dsb.

fajar.anggiawan wrote:

Untuk Google Chrome sendiri kadang memang bermasalah misalnya yaitu halaman yang crash dan solusinya yaitu dengan melakukan refresh pada halaman tersebut. Untuk FF sendiri, faktor antivirus/firewall lain dapat juga membuat bentrok dengan proteksi pada Asgard. Kami masih menyempurnakan hal ini dan kemungkinan besar pada versi Final akan sudah direvisi agar tidak bentrok dengan program sekuriti lain

Iya, Google Chrome saya paling sering bermasalah pada pengayanya. Untuk Security lain bentrok dengan PCMAV Asgard terjadi pada saya, ekrn.exe menyebabkan CPU saya 100%. Saya terminte, menjadi normal. Padahal ketika tidak menjalankan PCMAV Asgard, baik2 saya.

Untuk Task Manager Fiturnya tolong dipertambah seperti Suspend, Restart, dsb.

Usul dibuat Plugin Untuk Melihat Traffik Jaringan.

fajar.anggiawan wrote:

Terimas kasih banyak untuk respon dari indraramadhan094 ya

Sama2 mas.

Last edited by indraramadhan094 (09-09-2011 09:48:14)

Like Fan Page Majalah PC Media : http://www.facebook.com/pages/Majalah-P … 1773385582
Follow Akun Twitter Majalah PC Media : https://twitter.com/PCMedia_ID

**fajar.anggiawan** · 09-09-2011 10:37:35

fajar.anggiawan
Super ModeratoЯ
Offline

Registered: 02-04-2010
Posts: 443
User Karma: 18

Re: PC Media Asgard Alpha & PC Media Asgard Beta

hari wrote:

Saya koq ngga bisa buka Extension Manager yaa
Padahal OS nya XP SP3 + update terbaru hingga Agustus 2011 (pake Update Packnya RyanVM).
Dipasang di VirtualBox 4.1.2 dan isinya hanya XP + Asgard
Setiap pilih Extensions Manager ngga muncul apa-apa..
Icon bebek - show window sih berfungsi dengan baik...

Hm, cukup mengherankan. Saya coba di VMware, tidak ada kendala sama sekali dalam menjalankan ExtMan. Bagaimana jika menjalankan dengan CMD (Run as Administrator)

Microsoft Windows [Version 6.1.7600]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\dummy>cd "Z:\pcmav\Asgard Beta\lib"

C:\Users\dummy>z:

Z:\pcmav\Asgard Beta\lib>extman run

Z:\pcmav\Asgard Beta\lib>

indraramadhan094 wrote:

Di Drive A Saya tertulis Object will be Deleted, Padahal saya tidak memasukan floppy disk di PC saya. Program ini juga dapat menghapus folder proteksi autorun.inf, sayang tidak dapat menghapus dibagian sub folder.

Ya, pada Windows XP, drive A terdeteksi ke dalam ekstension. Bug ini akan dimasukan ke to do list. "menghapus dibagian sub folder" ?

indraramadhan094 wrote:

Sudah, hanya muncul ekrn.exe. sedangkan dari TCPView sysinternal muncul Google Chrome, YM!, dsb.

Pada Windows 7, koneksi GC dapat ditampilkan oleh ekstension. Seharusnya tidak ada perbedaan di Windows XP. Coba buka website pada GC diikuti refresh pada ekstension. Mengenai YM, program tsb tidak menggunakan koneksi TCP.

indraramadhan094 wrote:

ekrn.exe menyebabkan CPU saya 100%. Saya terminte, menjadi normal.

Apakah ekrn.exe bisa di-terminate secara manual?

indraramadhan094 wrote:

Untuk Task Manager Fiturnya tolong dipertambah seperti Suspend, Restart, dsb.
Usul dibuat Plugin Untuk Melihat Traffik Jaringan.

Usulnya ditampung

**anjing_hitam** · 09-09-2011 11:22:24

anjing_hitam
Trial Member
Offline

Registered: 09-04-2010
Posts: 18
User Karma: 1

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Hasil mencoba asgard alpha tanpa ditambah clamAV yang disandingkan dengan :

Security Essentials Version: 2.1.1116.0
Antimalware Client Version: 3.0.8402.0
Engine Version: 1.1.7604.0
Antivirus definition: 1.111.1795.0
Antispyware definition: 1.111.1795.0
Network Inspection System Engine Version: 2.0.5854.0
Network Inspection System Definition Version: 9.315.0.0

dan sistem operasi windows 7 professional sp 1

" sukses " ( tidak menimbulkan crash ) dengan setingan awal :

dan

(digambar tertera clamav, seharusnya tidak ada )

" jempol " untuk tim pengembang PCMAV

Namun ....

setelah saya gabungkan dengan clamav 97.1 dan Microsoft.VC80.8.0.50727.6195.CRT.x86
masih bermasalah ....

setingan pengetesan :

dan

kemudian klik scan now, setelah beberapa waktu muncul :

setelah klik ok , pesan hilang terlihat seperti gambar :

ketika klik stop, muncul :

bila klik yes / no tampilan seperti ini :

tidak berubah walaupun dilakukan pemilihan yes/no berulang ulang.

saya lakukan ini :

saya matikan proses PCMAV.

kemudian muncul :

ketika klik end now muncul :

setelah pesan hilang dengan sendirinya / diklik cancel, saya capture icon taskbar :

demikian " pengetesan " asgard alpha dari saya tanpa mencoba lagi dengan clamav versi sebelumnya.
sampai dengan tulisan ini dibuat, belum terjadi crash apapun ....

" jempol " buat tim pengembang PCMAV

salam

**indraramadhan094** · 09-09-2011 12:34:34

indraramadhan094
Moderator
Offline

From: Kota Tangerang, Banten
Registered: 04-04-2010
Posts: 550
User Karma: 15

Re: PC Media Asgard Alpha & PC Media Asgard Beta

fajar.anggiawan wrote:

"menghapus dibagian sub folder" ?

Iya, autorun yang berada bukan di drive utama tetapi berada di sub folder. F:\Lagu\

fajar.anggiawan wrote:

Pada Windows 7, koneksi GC dapat ditampilkan oleh ekstension. Seharusnya tidak ada perbedaan di Windows XP. Coba buka website pada GC diikuti refresh pada ekstension. Mengenai YM, program tsb tidak menggunakan koneksi TCP.

Tetap sama saja, Hasil yang ada di TCPView PCMAV berbeda dengan TCPView SysinternaL.

fajar.anggiawan wrote:

Apakah ekrn.exe bisa di-terminate secara manual?

terminate yang dimaksud disable service lewat service.msc? setelah ekrn.exe di terminate, process ekrn.exe muncul lagi. Kinerja CPU menjadi normal dan tidak terjadi CPU Usage 100% lagi...

Build PCMAV koq banyak bgt? sampai 3. lewat safe mode Windows XP Professional SP2.

Ternyata bug tersebut muncul dari Link Protektor yang bermasalah. Ketika ingin mencentang fitur link Protektor, sepertinya Link Protektor tidak mau aktif dan dalam keadaan tidak aktif (tidak dicentang). lalu build 1 bergaris akan muncul..

Lalu muncul error seperti berikut:
ExtMan.exe - Application Error
The Instruction at "0x029e21a6" referenced memory at "0x02d4ea1a". The memory could not be "read". Click on OK to terminate the program.

Lalu muncul Bug Krusial. Ketika Membuka Plugin yang ada didaftar list otomatis harus menjalankan process ExtMan.exe (Extension Manager). Ketika Extension Manager di Close dan Plugin didalamnya masih aktif (klo gak salah ada 9,semuanya muncul bug report) dan belum di close, maka Akan Menyebabkan bug report. Untuk Result Bug Reprt maaf tidak bisa diupload, koneksi upload sedang bermasalah... LAN unplugged mlulu (Curhat. hehehe...)

Filename: PCMAV Not Responding.rar
Type: application/octet-stream
Size: 57,737 byte(s)
MD5: 3702379b8914fa824e10e07c7ca37b62
SHA1: 39ea39002c57a5e1873d3d074937a000efdfeb6a
Submitted: 1 time(s)
URL: http://upload.virusindonesia.com/info.php?id=1149307351

PCMAV belum mendukung library clamav 0.97.1 ya? di PC saya masih crash...

Last edited by indraramadhan094 (13-09-2011 20:18:11)

Like Fan Page Majalah PC Media : http://www.facebook.com/pages/Majalah-P … 1773385582
Follow Akun Twitter Majalah PC Media : https://twitter.com/PCMedia_ID

**meong** · 09-09-2011 17:05:51

meong
Senior Member
Offline

Registered: 07-04-2010
Posts: 326
User Karma: 30

Re: PC Media Asgard Alpha & PC Media Asgard Beta

wah dah ada sdknya... mantappp

**Paray_Vx** · 09-09-2011 20:52:28

Paray_Vx
Junior Member
Offline

Registered: 29-03-2011
Posts: 88
User Karma: 1

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Sepertinya terinpirasi dari Film Thor

What You See Is What You Get....

**hari** · 09-09-2011 21:08:03

hari
Senior Member
Offline

Registered: 03-04-2010
Posts: 320
User Karma: 25

Re: PC Media Asgard Alpha & PC Media Asgard Beta

fajar.anggiawan wrote:

Hm, cukup mengherankan. Saya coba di VMware, tidak ada kendala sama sekali dalam menjalankan ExtMan. Bagaimana jika menjalankan dengan CMD (Run as Administrator)

Setelah pasang VirtualBox Guest Additions akhirnya saya bisa jalankan Extensions Manager dari system tray

Tapi ada masalah yang laen: setelah saya jalankan ExtMan, saya ngga bisa jalankan MSIE 8

Jadi IE nya terbuka tapi halaman yang dituju ngga muncul. Selain itu kotak URL Addressnya juga ngga bisa diisi/ diketik.

Solusinya saya matikan (exit) Asgard kemudian restart.

Setelah restart MSIE bisa jalan dengan normal; tapi saat saya jalankan Asgard, ExtMan nya tidak bisa jalan lagi...

Thx

Konfigurasi : XP SP3 + update terbaru hingga Agustus 2011 (pake Update Packnya RyanVM).
Dipasang di VirtualBox 4.1.2 dgn VirtualBox Guest Additions. 'Fresh installation'.

**user** · 09-09-2011 22:07:50

user
VIP
Offline

Registered: 24-12-2009
Posts: 709
User Karma: 29

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Percobaan Asgard

- Memakai ClamAV 0.95.3
Memory (PWS) : sekitar 70 K - 80 K
Commit Size : sekitar 160 K - 165 K

- Memakai ClamAV 0.97
Memory (PWS) : terus bertambah...
Commit Size : terus bertambah sampe > 250 K, crash!

Kesimpulan dari saya, library baru ga cocok digunakan dengan scan engine pcmav sekarang, kecuali scan engine pcmav diupdate

**indraramadhan094** · 11-09-2011 07:07:25

indraramadhan094
Moderator
Offline

From: Kota Tangerang, Banten
Registered: 04-04-2010
Posts: 550
User Karma: 15

Re: PC Media Asgard Alpha & PC Media Asgard Beta

date/time         : 2011-09-09, 11:24:58, 250ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 2 hours 16 minutes
program up time   : 4 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 513/958 MB (free/total)
free disk space   : (C:) 60,31 GB
display mode      : 1024x768, 32 bit
process id        : $8d8
allocated memory  : 8,95 MB
command line      : "C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib\ExtMan.exe" run
executable        : ExtMan.exe
exec. date/time   : 2011-09-06 09:10
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $8d7f6f94, $02e9af5b, $02e9af5b
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 03C1C290. Read of address 03C1C290.

thread $240:
>> stack not accessible, exception location:
03c1c290 +0 ???

thread $cb4:
7c90e9a9 +0a ntdll.dll              NtWaitForMultipleObjects
00450379 +0d ExtMan.exe   madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe   madExcept ThreadExceptFrame
>> created by thread $240 at:
77dfa17c +00 advapi32.dll

thread $ba8:
7c90e9a9 +0a ntdll.dll                 NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll              WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll              WaitForMultipleObjects
00450379 +0d ExtMan.exe      madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe      madExcept ThreadExceptFrame
>> created by thread $240 at:
032215be +00 IDMShellExt.dll

modules:
00400000 ExtMan.exe                       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib
02fd0000 Normaliz.dll    6.0.5441.0       C:\WINDOWS\system32
03220000 IDMShellExt.dll 6.0.6.4          C:\Program Files\Internet Download Manager
0ffd0000 rsaenh.dll      5.1.2600.2161    C:\WINDOWS\system32
10000000 guard32.dll     5.5.64714.1382   C:\WINDOWS\system32
4ffe0000 fltlib.dll      5.1.2600.2180    C:\WINDOWS\system32
5ad70000 uxtheme.dll     6.0.2900.2180    C:\WINDOWS\system32
5b0a0000 umdmxfrm.dll    5.1.2600.0       C:\WINDOWS\system32
5cd70000 serwvdrv.dll    5.1.2600.0       C:\WINDOWS\system32
5dca0000 iertutil.dll    7.0.5730.13      C:\WINDOWS\system32
661c0000 GRA8E1~1.DLL    12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ef0000 GrooveUtil.DLL  12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ff0000 GrooveNew.DLL   12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
71aa0000 WS2HELP.dll     5.1.2600.2180    C:\WINDOWS\system32
71ab0000 WS2_32.dll      5.1.2600.2180    C:\WINDOWS\system32
71ad0000 wsock32.dll     5.1.2600.2180    C:\WINDOWS\system32
71b20000 mpr.dll         5.1.2600.2180    C:\WINDOWS\system32
73000000 winspool.drv    5.1.2600.2180    C:\WINDOWS\system32
74720000 MSCTF.dll       5.1.2600.2180    C:\WINDOWS\system32
74c80000 oleacc.dll      4.2.5406.0       C:\WINDOWS\system32
755c0000 msctfime.ime    5.1.2600.2180    C:\WINDOWS\system32
76080000 MSVCP60.dll     6.2.3104.0       C:\WINDOWS\system32
76380000 msimg32.dll     5.1.2600.2180    C:\WINDOWS\system32
76390000 IMM32.DLL       5.1.2600.2180    C:\WINDOWS\system32
763b0000 comdlg32.dll    6.0.2900.2180    C:\WINDOWS\system32
76b40000 winmm.dll       5.1.2600.2180    C:\WINDOWS\system32
76bf0000 PSAPI.dll       5.1.2600.2180    C:\WINDOWS\system32
76d60000 iphlpapi.dll    5.1.2600.2180    C:\WINDOWS\system32
76fd0000 CLBCATQ.DLL     2001.12.4414.258 C:\WINDOWS\system32
77050000 COMRes.dll      2001.12.4414.258 C:\WINDOWS\system32
77120000 oleaut32.dll    5.1.2600.2180    C:\WINDOWS\system32
771b0000 WININET.dll     7.0.5730.13      C:\WINDOWS\system32
773d0000 comctl32.dll    6.0.2900.2180    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
774e0000 ole32.dll       5.1.2600.2180    C:\WINDOWS\system32
77920000 SETUPAPI.dll    5.1.2600.2180    C:\WINDOWS\system32
77a80000 CRYPT32.dll     5.131.2600.2180  C:\WINDOWS\system32
77b20000 MSASN1.dll      5.1.2600.2180    C:\WINDOWS\system32
77b40000 appHelp.dll     5.1.2600.2180    C:\WINDOWS\system32
77c00000 version.dll     5.1.2600.2180    C:\WINDOWS\system32
77c10000 msvcrt.dll      7.0.2600.2180    C:\WINDOWS\system32
77d40000 USER32.dll      5.1.2600.2180    C:\WINDOWS\system32
77dd0000 advapi32.dll    5.1.2600.2180    C:\WINDOWS\system32
77e70000 RPCRT4.dll      5.1.2600.2180    C:\WINDOWS\system32
77f10000 GDI32.dll       5.1.2600.2180    C:\WINDOWS\system32
77f60000 SHLWAPI.dll     6.0.2900.2995    C:\WINDOWS\system32
77fe0000 Secur32.dll     5.1.2600.2180    C:\WINDOWS\system32
78130000 MSVCR80.dll     8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86
7c630000 ATL80.DLL       8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa
7c800000 kernel32.dll    5.1.2600.2180    C:\WINDOWS\system32
7c900000 ntdll.dll       5.1.2600.2180    C:\WINDOWS\system32
7c9c0000 SHELL32.dll     6.0.2900.2180    C:\WINDOWS\system32

processes:
000 Idle                   0   0
004 System                 0   0   normal
37c smss.exe               0   0   normal       C:\WINDOWS\system32
3bc csrss.exe              62  63  normal       C:\WINDOWS\system32
3d8 winlogon.exe           44  14  high         C:\WINDOWS\system32
404 services.exe           4   2   normal       C:\WINDOWS\system32
410 lsass.exe              4   3   normal       C:\WINDOWS\system32
4c4 svchost.exe            4   1   normal       C:\WINDOWS\system32
518 svchost.exe            4   1   normal       C:\WINDOWS\system32
58c svchost.exe            11  35  normal       C:\WINDOWS\system32
5c4 AIPS.exe               4   3   normal       C:\Program Files\netcut\services
5f4 svchost.exe            4   1   normal       C:\WINDOWS\system32
674 svchost.exe            4   1   normal       C:\WINDOWS\system32
6e4 spoolsv.exe            4   4   normal       C:\WINDOWS\system32
0bc Explorer.EXE           296 144 normal       C:\WINDOWS
130 SOUNDMAN.EXE           18  8   normal       C:\WINDOWS
138 VTTimer.exe            12  5   normal       C:\WINDOWS\system32
144 VTtrayp.exe            12  5   normal       C:\WINDOWS\system32
150 egui.exe               203 63  normal       C:\Program Files\ESET\ESET Smart Security
1b8 ekrn.exe               8   13  normal       C:\Program Files\ESET\ESET Smart Security
1c4 ctfmon.exe             18  12  normal       C:\WINDOWS\system32
1e8 YahooMessenger.exe     789 346 normal       C:\PROGRA~1\Yahoo!\MESSEN~1
1f4 msnmsgr.exe            65  76  normal       C:\Program Files\Windows Live\Messenger
2a8 SeaPort.exe            5   6   normal       C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort
384 GoogleUpdate.exe       5   3   normal       C:\Program Files\Google\Update
494 slmdmsr.exe            4   1   normal       C:\WINDOWS\system32
084 wdfmgr.exe             4   1   normal       C:\WINDOWS\system32
75c SearchIndexer.exe      5   7   normal       C:\WINDOWS\system32
828 wscntfy.exe            20  9   normal       C:\WINDOWS\system32
aa0 wmiprvse.exe           8   7   normal       C:\WINDOWS\system32\wbem
bf0 alg.exe                5   2   normal       C:\WINDOWS\System32
e1c YahooMessenger.exe     9   9   normal       C:\PROGRA~1\Yahoo!\MESSEN~1
4a4 taskmgr.exe            110 130 high         C:\WINDOWS\system32
c5c PCMAV.exe              227 155 normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha
754 chrome.exe             74  52  normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
aac chrome.exe             30  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
a6c chrome.exe             10  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
920 SearchProtocolHost.exe 5   14  below normal C:\WINDOWS\system32
4e8 SearchFilterHost.exe   5   10  below normal C:\WINDOWS\system32
2bc svchost.exe            5   4   normal       C:\WINDOWS\system32
8d8 ExtMan.exe             161 90  normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib

cpu registers:
eax = 7ffdf000
ebx = 00000000
ecx = 03e40fda
edx = 00000002
esi = 03e40fd5
edi = 0012fe68
eip = 03c1c290
esp = 0012fe04
ebp = 0012fe2c

stack dump:
0012fe04  17 58 40 00 28 a0 af 00 - 28 a0 af 00 ea 2e 40 00  .X@.(...(.....@.
0012fe14  18 a0 af 00 28 50 4d 00 - 06 2f 40 00 66 00 40 00  .Q@.(..../@.fQ@.
0012fe24  50 00 40 00 54 fe 12 00 - 06 2f 40 00 1a fe 08 00  KT@.T..../@..Q@.
0012fe34  c0 00 00 00 b8 fe 12 00 - 27 2f 40 00 1f 01 00 00  ........'/@.+...
0012fe44  27 ff 12 00 27 2f 40 00 - 54 fe 12 00 17 58 40 00  ,...'/@.T....X@.
0012fe54  f8 f1 a3 00 f8 f1 a3 00 - 27 01 00 00 d0 54 40 00  ....,...'/@.h...
0012fe64  2c de aa 00 2c ff 12 00 - fe 00 00 00 00 00 13 00  .X@...........D.
0012fe74  10 fe 12 00 03 00 00 00 - 00 bc 44 00 b4 fe 12 00  ,....S@.....t...
0012fe84  b8 fe 12 00 e8 de aa 00 - 98 fe 12 00 5d bd 44 00  ....(.D.....].D.
0012fe94  e8 fe 12 00 f8 fe 12 00 - aa bd 44 00 e8 fe 12 00  ..........D.....
0012fea4  24 fb c4 00 00 00 00 00 - 02 00 00 00 08 a0 af 00  $...............
0012feb4  28 a0 af 00 38 a0 af 00 - 08 4e b2 00 90 4d b2 00  (...8....N...M..
0012fec4  00 f0 12 00 00 00 03 00 - 04 00 00 00 00 10 00 00  ................
0012fed4  00 10 00 00 04 00 00 00 - 00 00 02 00 07 00 00 00  ................
0012fee4  2c ff 12 00 6c ff 12 00 - a0 c1 44 00 6c ff 12 00  ,...l.....D.l...
0012fef4  6c ff 12 00 04 ff 12 00 - 9e c4 44 00 6c ff 12 00  l.........D.l...
0012ff04  8c ff 12 00 29 c5 44 00 - 6c ff 12 00 24 fb c4 00  ....).D.l...$...
0012ff14  c0 f0 a1 00 78 ff 12 00 - 00 00 00 00 00 00 00 00  ....x...........
0012ff24  00 00 00 00 00 00 00 00 - 08 46 08 01 b8 cd a3 00  .........F......
0012ff34  b8 bf 08 01 00 00 00 00 - 60 83 44 85 18 54 5f 85  ........`.D..T_.

disassembling:
7c90e99f public NtWaitForMultipleObjects:  ; function entry point
7c90e99f   mov     eax, $10e
7c90e9a4   mov     edx, $7ffe0300
7c90e9a9 > call    dword ptr [edx]        ; KiFastSystemCall (ntdll.dll)
7c90e9ab   ret     $14

date/time         : 2011-09-08, 10:10:50, 859ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 32 minutes 39 seconds
program up time   : 14 minutes 43 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 709/958 MB (free/total)
free disk space   : (C:) 61,13 GB
display mode      : 1024x768, 32 bit
process id        : $25c
allocated memory  : 48,15 MB
executable        : PCMAV.exe
exec. date/time   : 2011-09-06 11:01
version           : 6.0.0.0
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
PCMAV.exe.mad     : $00026e0c, $202e3f26, $1c644614
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $989739ed, $d339bcf6, $d339bcf6
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 0060B160 in module 'PCMAV.exe'. Read of address 00000004.

main thread ($5a4):
0060b160 +000 PCMAV.exe  segment%276 public%12303
0068402e +006 PCMAV.exe  segment%291 public%13036
005a4bb9 +015 PCMAV.exe  segment%206 public%10420
005a4c64 +018 PCMAV.exe  segment%206 public%10424
005a5109 +021 PCMAV.exe  segment%206 public%10429
00475ecc +014 PCMAV.exe  segment%31  public%3532
77d4bcc7 +00a USER32.dll             DispatchMessageA
004c47f4 +0fc PCMAV.exe  segment%58  public%6000
004c4816 +00a PCMAV.exe  segment%58  public%6001
00683755 +16d PCMAV.exe  segment%291 public%13032
004a704c +064 PCMAV.exe  segment%54  public%4998
0048c55e +01e PCMAV.exe  segment%43  public%4236
0048c65c +00c PCMAV.exe  segment%43  public%4242
004a6b47 +2bb PCMAV.exe  segment%54  public%4991
004aab3e +4fa PCMAV.exe  segment%54  public%5138
0048c408 +06c PCMAV.exe  segment%43  public%4230
004a67d4 +024 PCMAV.exe  segment%54  public%4987
004aac8f +023 PCMAV.exe  segment%54  public%5140
004ab65b +00b PCMAV.exe  segment%54  public%5147
004a6b47 +2bb PCMAV.exe  segment%54  public%4991
004aab3e +4fa PCMAV.exe  segment%54  public%5138
004a9529 +02d PCMAV.exe  segment%54  public%5107
004aa268 +02c PCMAV.exe  segment%54  public%5133
00475ecc +014 PCMAV.exe  segment%31  public%3532
77d4b7a6 +044 USER32.dll             SendMessageW
77d4e361 +016 USER32.dll             CallWindowProcA
004aac3b +0d7 PCMAV.exe  segment%54  public%5139
004a746c +010 PCMAV.exe  segment%54  public%5015
004a6b47 +2bb PCMAV.exe  segment%54  public%4991
004aab3e +4fa PCMAV.exe  segment%54  public%5138
0048c408 +06c PCMAV.exe  segment%43  public%4230
004aa268 +02c PCMAV.exe  segment%54  public%5133
00475ecc +014 PCMAV.exe  segment%31  public%3532
77d4bcc7 +00a USER32.dll             DispatchMessageA
004c47f4 +0fc PCMAV.exe  segment%58  public%6000
004c482e +00a PCMAV.exe  segment%58  public%6002
004c4b3f +0b3 PCMAV.exe  segment%58  public%6007
0069027d +1c9 PCMAV.exe  segment%423 public%13231

thread $6d0 (TWndProc): <suspended>
0066790f +1f PCMAV.exe segment%282 public%12790

thread $218:
7c90e286 +00a ntdll.dll                NtReadFile
7c80186f +061 kernel32.dll             ReadFile
005b674d +1e5 PCMAV.exe    segment%208 public%10609
00452b5d +00d PCMAV.exe    segment%23  public%2340
00452bc7 +037 PCMAV.exe    segment%23  public%2341
>> created by thread $794 at:
005b69bc +22c PCMAV.exe    segment%208 public%10610

thread $688 (TRegMonitorThread):
7c90e9be +0a ntdll.dll                NtWaitForSingleObject
7c8025d5 +85 kernel32.dll             WaitForSingleObjectEx
7c80253d +0d kernel32.dll             WaitForSingleObject
00678f4e +12 PCMAV.exe    segment%288 public%12949
00452c7b +2b PCMAV.exe    segment%23  public%2342
00474758 +34 PCMAV.exe    segment%31  public%3425
004056f4 +28 PCMAV.exe    segment%0   public%250
00452b5d +0d PCMAV.exe    segment%23  public%2340
00452bc7 +37 PCMAV.exe    segment%23  public%2341
>> created by main thread ($5a4) at:
00678e38 +18 PCMAV.exe    segment%288 public%12946

thread $708 (TRegMonitorThread):
7c90e9be +0a ntdll.dll                NtWaitForSingleObject
7c8025d5 +85 kernel32.dll             WaitForSingleObjectEx
7c80253d +0d kernel32.dll             WaitForSingleObject
00678f4e +12 PCMAV.exe    segment%288 public%12949
00452c7b +2b PCMAV.exe    segment%23  public%2342
00474758 +34 PCMAV.exe    segment%31  public%3425
004056f4 +28 PCMAV.exe    segment%0   public%250
00452b5d +0d PCMAV.exe    segment%23  public%2340
00452bc7 +37 PCMAV.exe    segment%23  public%2341
>> created by main thread ($5a4) at:
00678e38 +18 PCMAV.exe    segment%288 public%12946

thread $5dc:
7c90d85a +a ntdll.dll  NtDelayExecution

thread $35c:
7c90e9a9 +a ntdll.dll  NtWaitForMultipleObjects

thread $5b8:
7c90e9a9 +0a ntdll.dll               NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll            WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll            WaitForMultipleObjects
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by main thread ($5a4) at:
769c8951 +00 userenv.dll

thread $724:
7c90e286 +00a ntdll.dll                NtReadFile
7c80186f +061 kernel32.dll             ReadFile
005b674d +1e5 PCMAV.exe    segment%208 public%10609
00452b5d +00d PCMAV.exe    segment%23  public%2340
00452bc7 +037 PCMAV.exe    segment%23  public%2341
>> created by thread $608 at:
005b69bc +22c PCMAV.exe    segment%208 public%10610

thread $b8:
7c90d85a +0a ntdll.dll             NtDelayExecution
00452b5d +0d PCMAV.exe  segment%23 public%2340
00452bc7 +37 PCMAV.exe  segment%23 public%2341
>> created by main thread ($5a4) at:
77e8760d +00 RPCRT4.dll

thread $7e8:
7c90e319 +a ntdll.dll  NtRemoveIoCompletion

thread $448:
7c90e319 +0a ntdll.dll               NtRemoveIoCompletion
7c80cbd3 +23 kernel32.dll            GetQueuedCompletionStatus
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by thread $b8 at:
77e8760d +00 RPCRT4.dll

thread $2e8 (TgtTimerThread):
7c90e9be +0a ntdll.dll               NtWaitForSingleObject
7c8025d5 +85 kernel32.dll            WaitForSingleObjectEx
7c80253d +0d kernel32.dll            WaitForSingleObject
004d1e74 +10 PCMAV.exe    segment%64 public%6319
00452c7b +2b PCMAV.exe    segment%23 public%2342
00474758 +34 PCMAV.exe    segment%31 public%3425
004056f4 +28 PCMAV.exe    segment%0  public%250
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by main thread ($5a4) at:
004d1dfb +1b PCMAV.exe    segment%64 public%6316

thread $4dc (TgtTimerThread):
7c90e9be +0a ntdll.dll               NtWaitForSingleObject
7c8025d5 +85 kernel32.dll            WaitForSingleObjectEx
7c80253d +0d kernel32.dll            WaitForSingleObject
004d1e74 +10 PCMAV.exe    segment%64 public%6319
00452c7b +2b PCMAV.exe    segment%23 public%2342
00474758 +34 PCMAV.exe    segment%31 public%3425
004056f4 +28 PCMAV.exe    segment%0  public%250
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by main thread ($5a4) at:
004d1dfb +1b PCMAV.exe    segment%64 public%6316

thread $38c (TgtTimerThread):
7c90e9be +0a ntdll.dll               NtWaitForSingleObject
7c8025d5 +85 kernel32.dll            WaitForSingleObjectEx
7c80253d +0d kernel32.dll            WaitForSingleObject
004d1e74 +10 PCMAV.exe    segment%64 public%6319
00452c7b +2b PCMAV.exe    segment%23 public%2342
00474758 +34 PCMAV.exe    segment%31 public%3425
004056f4 +28 PCMAV.exe    segment%0  public%250
00452b5d +0d PCMAV.exe    segment%23 public%2340
00452bc7 +37 PCMAV.exe    segment%23 public%2341
>> created by main thread ($5a4) at:
004d1dfb +1b PCMAV.exe    segment%64 public%6316

processes:
000 Idle         0   0
004 System       0   0   normal
09c smss.exe     0   0   normal C:\WINDOWS\system32
0d0 csrss.exe    43  48  normal C:\WINDOWS\system32
0e8 winlogon.exe 35  13  high   C:\WINDOWS\system32
114 services.exe 4   1   normal C:\WINDOWS\system32
120 lsass.exe    4   2   normal C:\WINDOWS\system32
1bc svchost.exe  4   1   normal C:\WINDOWS\system32
1e8 svchost.exe  4   1   normal C:\WINDOWS\system32
220 svchost.exe  4   1   normal C:\WINDOWS\system32
2f8 Explorer.EXE 251 109 normal C:\WINDOWS
374 taskmgr.exe  111 127 high   C:\WINDOWS\system32
25c PCMAV.exe    240 161 normal C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha

cpu registers:
eax = 00000000
ebx = 02856080
ecx = 04878460
edx = 02856080
esi = 0012f46c
edi = 00000401
eip = 0060b160
esp = 0012f444
ebp = 0012f47c

stack dump:
0012f444  33 40 68 00 bc 4b 5a 00 - 80 60 85 02 67 4c 5a 00  3@h..KZ..`..gLZ.
0012f454  80 60 85 02 0e 51 5a 00 - e4 f4 12 00 01 0e 58 01  .`...QZ.......X.
0012f464  00 00 00 00 ce 5e 47 00 - 01 04 00 00 00 00 00 00  .....^G.........
0012f474  00 00 00 00 00 00 00 00 - a8 f4 12 00 09 87 d4 77  ...............w
0012f484  ac 00 06 00 01 04 00 00 - 00 00 00 00 00 00 00 00  ................
0012f494  01 0e 58 01 cd ab ba dc - 00 00 00 00 e4 f4 12 00  ..X.............
0012f4a4  01 0e 58 01 10 f5 12 00 - eb 87 d4 77 01 0e 58 01  ..X........w..X.
0012f4b4  ac 00 06 00 01 04 00 00 - 00 00 00 00 00 00 00 00  ................
0012f4c4  ac f5 12 00 a4 f5 12 00 - a8 9f aa 00 14 00 00 00  ................
0012f4d4  01 00 00 00 00 00 00 00 - 00 00 00 00 10 00 00 00  ................
0012f4e4  00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
0012f4f4  00 00 00 00 c4 f4 12 00 - 68 f0 12 00 60 f5 12 00  ........h...`...
0012f504  94 04 d7 77 08 88 d4 77 - ff ff ff ff 70 f5 12 00  ...w...w....p...
0012f514  a5 89 d4 77 00 00 00 00 - 01 0e 58 01 ac 00 06 00  ...w......X.....
0012f524  01 04 00 00 00 00 00 00 - 00 00 00 00 bc 9f aa 00  ................
0012f534  01 00 00 00 a4 f5 12 00 - d0 99 27 01 01 00 00 00  ..........'.....
0012f544  a4 f5 12 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
0012f554  00 00 00 00 38 f5 12 00 - 68 f0 12 00 1c f9 12 00  ....8...h.......
0012f564  94 04 d7 77 c8 89 d4 77 - ff ff ff ff 80 f5 12 00  ...w...w........
0012f574  cc bc d4 77 a4 f5 12 00 - 01 00 00 00 ac 00 06 00  ...w............

disassembling:
0060b160 public segment%276.public%12303 (PCMAV.exe):  ; function entry point
0060b160 > mov     eax, [eax+4]
0060b163   call    +$118 ($60b280)        ; segment%276.public%12305 (PCMAV.exe)
0060b163
0060b168   ret

date/time         : 2011-09-09, 11:24:58, 250ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 2 hours 16 minutes
program up time   : 4 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 513/958 MB (free/total)
free disk space   : (C:) 60,31 GB
display mode      : 1024x768, 32 bit
process id        : $8d8
allocated memory  : 8,95 MB
command line      : "C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib\ExtMan.exe" run
executable        : ExtMan.exe
exec. date/time   : 2011-09-06 09:10
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $8d7f6f94, $02e9af5b, $02e9af5b
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 03C1C290. Read of address 03C1C290.

thread $240:
>> stack not accessible, exception location:
03c1c290 +0 ???

thread $cb4:
7c90e9a9 +0a ntdll.dll              NtWaitForMultipleObjects
00450379 +0d ExtMan.exe   madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe   madExcept ThreadExceptFrame
>> created by thread $240 at:
77dfa17c +00 advapi32.dll

thread $ba8:
7c90e9a9 +0a ntdll.dll                 NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll              WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll              WaitForMultipleObjects
00450379 +0d ExtMan.exe      madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe      madExcept ThreadExceptFrame
>> created by thread $240 at:
032215be +00 IDMShellExt.dll

modules:
00400000 ExtMan.exe                       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib
02fd0000 Normaliz.dll    6.0.5441.0       C:\WINDOWS\system32
03220000 IDMShellExt.dll 6.0.6.4          C:\Program Files\Internet Download Manager
0ffd0000 rsaenh.dll      5.1.2600.2161    C:\WINDOWS\system32
10000000 guard32.dll     5.5.64714.1382   C:\WINDOWS\system32
4ffe0000 fltlib.dll      5.1.2600.2180    C:\WINDOWS\system32
5ad70000 uxtheme.dll     6.0.2900.2180    C:\WINDOWS\system32
5b0a0000 umdmxfrm.dll    5.1.2600.0       C:\WINDOWS\system32
5cd70000 serwvdrv.dll    5.1.2600.0       C:\WINDOWS\system32
5dca0000 iertutil.dll    7.0.5730.13      C:\WINDOWS\system32
661c0000 GRA8E1~1.DLL    12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ef0000 GrooveUtil.DLL  12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ff0000 GrooveNew.DLL   12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
71aa0000 WS2HELP.dll     5.1.2600.2180    C:\WINDOWS\system32
71ab0000 WS2_32.dll      5.1.2600.2180    C:\WINDOWS\system32
71ad0000 wsock32.dll     5.1.2600.2180    C:\WINDOWS\system32
71b20000 mpr.dll         5.1.2600.2180    C:\WINDOWS\system32
73000000 winspool.drv    5.1.2600.2180    C:\WINDOWS\system32
74720000 MSCTF.dll       5.1.2600.2180    C:\WINDOWS\system32
74c80000 oleacc.dll      4.2.5406.0       C:\WINDOWS\system32
755c0000 msctfime.ime    5.1.2600.2180    C:\WINDOWS\system32
76080000 MSVCP60.dll     6.2.3104.0       C:\WINDOWS\system32
76380000 msimg32.dll     5.1.2600.2180    C:\WINDOWS\system32
76390000 IMM32.DLL       5.1.2600.2180    C:\WINDOWS\system32
763b0000 comdlg32.dll    6.0.2900.2180    C:\WINDOWS\system32
76b40000 winmm.dll       5.1.2600.2180    C:\WINDOWS\system32
76bf0000 PSAPI.dll       5.1.2600.2180    C:\WINDOWS\system32
76d60000 iphlpapi.dll    5.1.2600.2180    C:\WINDOWS\system32
76fd0000 CLBCATQ.DLL     2001.12.4414.258 C:\WINDOWS\system32
77050000 COMRes.dll      2001.12.4414.258 C:\WINDOWS\system32
77120000 oleaut32.dll    5.1.2600.2180    C:\WINDOWS\system32
771b0000 WININET.dll     7.0.5730.13      C:\WINDOWS\system32
773d0000 comctl32.dll    6.0.2900.2180    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
774e0000 ole32.dll       5.1.2600.2180    C:\WINDOWS\system32
77920000 SETUPAPI.dll    5.1.2600.2180    C:\WINDOWS\system32
77a80000 CRYPT32.dll     5.131.2600.2180  C:\WINDOWS\system32
77b20000 MSASN1.dll      5.1.2600.2180    C:\WINDOWS\system32
77b40000 appHelp.dll     5.1.2600.2180    C:\WINDOWS\system32
77c00000 version.dll     5.1.2600.2180    C:\WINDOWS\system32
77c10000 msvcrt.dll      7.0.2600.2180    C:\WINDOWS\system32
77d40000 USER32.dll      5.1.2600.2180    C:\WINDOWS\system32
77dd0000 advapi32.dll    5.1.2600.2180    C:\WINDOWS\system32
77e70000 RPCRT4.dll      5.1.2600.2180    C:\WINDOWS\system32
77f10000 GDI32.dll       5.1.2600.2180    C:\WINDOWS\system32
77f60000 SHLWAPI.dll     6.0.2900.2995    C:\WINDOWS\system32
77fe0000 Secur32.dll     5.1.2600.2180    C:\WINDOWS\system32
78130000 MSVCR80.dll     8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86
7c630000 ATL80.DLL       8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa
7c800000 kernel32.dll    5.1.2600.2180    C:\WINDOWS\system32
7c900000 ntdll.dll       5.1.2600.2180    C:\WINDOWS\system32
7c9c0000 SHELL32.dll     6.0.2900.2180    C:\WINDOWS\system32

processes:
000 Idle                   0   0
004 System                 0   0   normal
37c smss.exe               0   0   normal       C:\WINDOWS\system32
3bc csrss.exe              62  63  normal       C:\WINDOWS\system32
3d8 winlogon.exe           44  14  high         C:\WINDOWS\system32
404 services.exe           4   2   normal       C:\WINDOWS\system32
410 lsass.exe              4   3   normal       C:\WINDOWS\system32
4c4 svchost.exe            4   1   normal       C:\WINDOWS\system32
518 svchost.exe            4   1   normal       C:\WINDOWS\system32
58c svchost.exe            11  35  normal       C:\WINDOWS\system32
5c4 AIPS.exe               4   3   normal       C:\Program Files\netcut\services
5f4 svchost.exe            4   1   normal       C:\WINDOWS\system32
674 svchost.exe            4   1   normal       C:\WINDOWS\system32
6e4 spoolsv.exe            4   4   normal       C:\WINDOWS\system32
0bc Explorer.EXE           296 144 normal       C:\WINDOWS
130 SOUNDMAN.EXE           18  8   normal       C:\WINDOWS
138 VTTimer.exe            12  5   normal       C:\WINDOWS\system32
144 VTtrayp.exe            12  5   normal       C:\WINDOWS\system32
150 egui.exe               203 63  normal       C:\Program Files\ESET\ESET Smart Security
1b8 ekrn.exe               8   13  normal       C:\Program Files\ESET\ESET Smart Security
1c4 ctfmon.exe             18  12  normal       C:\WINDOWS\system32
1e8 YahooMessenger.exe     789 346 normal       C:\PROGRA~1\Yahoo!\MESSEN~1
1f4 msnmsgr.exe            65  76  normal       C:\Program Files\Windows Live\Messenger
2a8 SeaPort.exe            5   6   normal       C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort
384 GoogleUpdate.exe       5   3   normal       C:\Program Files\Google\Update
494 slmdmsr.exe            4   1   normal       C:\WINDOWS\system32
084 wdfmgr.exe             4   1   normal       C:\WINDOWS\system32
75c SearchIndexer.exe      5   7   normal       C:\WINDOWS\system32
828 wscntfy.exe            20  9   normal       C:\WINDOWS\system32
aa0 wmiprvse.exe           8   7   normal       C:\WINDOWS\system32\wbem
bf0 alg.exe                5   2   normal       C:\WINDOWS\System32
e1c YahooMessenger.exe     9   9   normal       C:\PROGRA~1\Yahoo!\MESSEN~1
4a4 taskmgr.exe            110 130 high         C:\WINDOWS\system32
c5c PCMAV.exe              227 155 normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha
754 chrome.exe             74  52  normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
aac chrome.exe             30  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
a6c chrome.exe             10  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
920 SearchProtocolHost.exe 5   14  below normal C:\WINDOWS\system32
4e8 SearchFilterHost.exe   5   10  below normal C:\WINDOWS\system32
2bc svchost.exe            5   4   normal       C:\WINDOWS\system32
8d8 ExtMan.exe             161 90  normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib

cpu registers:
eax = 7ffdf000
ebx = 00000000
ecx = 03e40fda
edx = 00000002
esi = 03e40fd5
edi = 0012fe68
eip = 03c1c290
esp = 0012fe04
ebp = 0012fe2c

stack dump:
0012fe04  17 58 40 00 28 a0 af 00 - 28 a0 af 00 ea 2e 40 00  .X@.(...(.....@.
0012fe14  18 a0 af 00 28 50 4d 00 - 06 2f 40 00 66 00 40 00  .Q@.(..../@.fQ@.
0012fe24  50 00 40 00 54 fe 12 00 - 06 2f 40 00 1a fe 08 00  KT@.T..../@..Q@.
0012fe34  c0 00 00 00 b8 fe 12 00 - 27 2f 40 00 1f 01 00 00  ........'/@.+...
0012fe44  27 ff 12 00 27 2f 40 00 - 54 fe 12 00 17 58 40 00  ,...'/@.T....X@.
0012fe54  f8 f1 a3 00 f8 f1 a3 00 - 27 01 00 00 d0 54 40 00  ....,...'/@.h...
0012fe64  2c de aa 00 2c ff 12 00 - fe 00 00 00 00 00 13 00  .X@...........D.
0012fe74  10 fe 12 00 03 00 00 00 - 00 bc 44 00 b4 fe 12 00  ,....S@.....t...
0012fe84  b8 fe 12 00 e8 de aa 00 - 98 fe 12 00 5d bd 44 00  ....(.D.....].D.
0012fe94  e8 fe 12 00 f8 fe 12 00 - aa bd 44 00 e8 fe 12 00  ..........D.....
0012fea4  24 fb c4 00 00 00 00 00 - 02 00 00 00 08 a0 af 00  $...............
0012feb4  28 a0 af 00 38 a0 af 00 - 08 4e b2 00 90 4d b2 00  (...8....N...M..
0012fec4  00 f0 12 00 00 00 03 00 - 04 00 00 00 00 10 00 00  ................
0012fed4  00 10 00 00 04 00 00 00 - 00 00 02 00 07 00 00 00  ................
0012fee4  2c ff 12 00 6c ff 12 00 - a0 c1 44 00 6c ff 12 00  ,...l.....D.l...
0012fef4  6c ff 12 00 04 ff 12 00 - 9e c4 44 00 6c ff 12 00  l.........D.l...
0012ff04  8c ff 12 00 29 c5 44 00 - 6c ff 12 00 24 fb c4 00  ....).D.l...$...
0012ff14  c0 f0 a1 00 78 ff 12 00 - 00 00 00 00 00 00 00 00  ....x...........
0012ff24  00 00 00 00 00 00 00 00 - 08 46 08 01 b8 cd a3 00  .........F......
0012ff34  b8 bf 08 01 00 00 00 00 - 60 83 44 85 18 54 5f 85  ........`.D..T_.

disassembling:
7c90e99f public NtWaitForMultipleObjects:  ; function entry point
7c90e99f   mov     eax, $10e
7c90e9a4   mov     edx, $7ffe0300
7c90e9a9 > call    dword ptr [edx]        ; KiFastSystemCall (ntdll.dll)
7c90e9ab   ret     $14

date/time         : 2011-09-09, 11:27:25, 31ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 2 hours 18 minutes
program up time   : 4 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 505/958 MB (free/total)
free disk space   : (C:) 60,31 GB
display mode      : 1024x768, 32 bit
process id        : $a3c
allocated memory  : 9,17 MB
command line      : "C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib\ExtMan.exe" run
executable        : ExtMan.exe
exec. date/time   : 2011-09-06 09:10
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $0366cecc, $4fc2ed9b, $4fc2ed9b
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 0366CECC. Read of address 0366CECC.

thread $f40:
0366cecc +00 ???
7c90eae0 +10 ntdll.dll                 KiUserCallbackDispatcher
77d4e670 +0a USER32.dll                DestroyWindow
00493528 +28 ExtMan.exe Controls       TWinControl.DestroyWindowHandle
004a7a47 +33 ExtMan.exe Forms          TCustomForm.DestroyWindowHandle
004a453b +73 ExtMan.exe Forms          TCustomForm.Destroy
0046e64f +47 ExtMan.exe Classes        TComponent.DestroyComponents
004a2786 +32 ExtMan.exe Forms          DoneApplication
00454dea +26 ExtMan.exe SysUtils       DoExitProc
00404f65 +21 ExtMan.exe System   49 +0 @Halt0

thread $b24:
7c90e9a9 +0a ntdll.dll              NtWaitForMultipleObjects
00450379 +0d ExtMan.exe   madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe   madExcept ThreadExceptFrame
>> created by thread $f40 at:
77dfa17c +00 advapi32.dll

thread $ac8:
7c90e9a9 +0a ntdll.dll                 NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll              WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll              WaitForMultipleObjects
00450379 +0d ExtMan.exe      madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe      madExcept ThreadExceptFrame
>> created by thread $f40 at:
032215be +00 IDMShellExt.dll

modules:
00400000 ExtMan.exe                       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib
02fd0000 Normaliz.dll    6.0.5441.0       C:\WINDOWS\system32
03220000 IDMShellExt.dll 6.0.6.4          C:\Program Files\Internet Download Manager
0ffd0000 rsaenh.dll      5.1.2600.2161    C:\WINDOWS\system32
10000000 guard32.dll     5.5.64714.1382   C:\WINDOWS\system32
4ffe0000 fltlib.dll      5.1.2600.2180    C:\WINDOWS\system32
5ad70000 uxtheme.dll     6.0.2900.2180    C:\WINDOWS\system32
5b0a0000 umdmxfrm.dll    5.1.2600.0       C:\WINDOWS\system32
5cd70000 serwvdrv.dll    5.1.2600.0       C:\WINDOWS\system32
5dca0000 iertutil.dll    7.0.5730.13      C:\WINDOWS\system32
661c0000 GRA8E1~1.DLL    12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ef0000 GrooveUtil.DLL  12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ff0000 GrooveNew.DLL   12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
71aa0000 WS2HELP.dll     5.1.2600.2180    C:\WINDOWS\system32
71ab0000 WS2_32.dll      5.1.2600.2180    C:\WINDOWS\system32
71ad0000 wsock32.dll     5.1.2600.2180    C:\WINDOWS\system32
71b20000 mpr.dll         5.1.2600.2180    C:\WINDOWS\system32
73000000 winspool.drv    5.1.2600.2180    C:\WINDOWS\system32
74720000 MSCTF.dll       5.1.2600.2180    C:\WINDOWS\system32
74c80000 oleacc.dll      4.2.5406.0       C:\WINDOWS\system32
755c0000 msctfime.ime    5.1.2600.2180    C:\WINDOWS\system32
76080000 MSVCP60.dll     6.2.3104.0       C:\WINDOWS\system32
76380000 msimg32.dll     5.1.2600.2180    C:\WINDOWS\system32
76390000 IMM32.DLL       5.1.2600.2180    C:\WINDOWS\system32
763b0000 comdlg32.dll    6.0.2900.2180    C:\WINDOWS\system32
76b40000 winmm.dll       5.1.2600.2180    C:\WINDOWS\system32
76bf0000 PSAPI.dll       5.1.2600.2180    C:\WINDOWS\system32
76d60000 iphlpapi.dll    5.1.2600.2180    C:\WINDOWS\system32
76fd0000 CLBCATQ.DLL     2001.12.4414.258 C:\WINDOWS\system32
77050000 COMRes.dll      2001.12.4414.258 C:\WINDOWS\system32
77120000 oleaut32.dll    5.1.2600.2180    C:\WINDOWS\system32
771b0000 WININET.dll     7.0.5730.13      C:\WINDOWS\system32
773d0000 comctl32.dll    6.0.2900.2180    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
774e0000 ole32.dll       5.1.2600.2180    C:\WINDOWS\system32
77920000 SETUPAPI.dll    5.1.2600.2180    C:\WINDOWS\system32
77a80000 CRYPT32.dll     5.131.2600.2180  C:\WINDOWS\system32
77b20000 MSASN1.dll      5.1.2600.2180    C:\WINDOWS\system32
77b40000 appHelp.dll     5.1.2600.2180    C:\WINDOWS\system32
77c00000 version.dll     5.1.2600.2180    C:\WINDOWS\system32
77c10000 msvcrt.dll      7.0.2600.2180    C:\WINDOWS\system32
77d40000 USER32.dll      5.1.2600.2180    C:\WINDOWS\system32
77dd0000 advapi32.dll    5.1.2600.2180    C:\WINDOWS\system32
77e70000 RPCRT4.dll      5.1.2600.2180    C:\WINDOWS\system32
77f10000 GDI32.dll       5.1.2600.2180    C:\WINDOWS\system32
77f60000 SHLWAPI.dll     6.0.2900.2995    C:\WINDOWS\system32
77fe0000 Secur32.dll     5.1.2600.2180    C:\WINDOWS\system32
78130000 MSVCR80.dll     8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86
7c630000 ATL80.DLL       8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa
7c800000 kernel32.dll    5.1.2600.2180    C:\WINDOWS\system32
7c900000 ntdll.dll       5.1.2600.2180    C:\WINDOWS\system32
7c9c0000 SHELL32.dll     6.0.2900.2180    C:\WINDOWS\system32

processes:
000 Idle                   0   0
004 System                 0   0   normal
37c smss.exe               0   0   normal       C:\WINDOWS\system32
3bc csrss.exe              62  63  normal       C:\WINDOWS\system32
3d8 winlogon.exe           44  14  high         C:\WINDOWS\system32
404 services.exe           4   2   normal       C:\WINDOWS\system32
410 lsass.exe              6   5   normal       C:\WINDOWS\system32
4c4 svchost.exe            4   1   normal       C:\WINDOWS\system32
518 svchost.exe            4   1   normal       C:\WINDOWS\system32
58c svchost.exe            11  34  normal       C:\WINDOWS\system32
5c4 AIPS.exe               4   3   normal       C:\Program Files\netcut\services
5f4 svchost.exe            4   1   normal       C:\WINDOWS\system32
674 svchost.exe            4   1   normal       C:\WINDOWS\system32
6e4 spoolsv.exe            4   4   normal       C:\WINDOWS\system32
0bc Explorer.EXE           300 146 normal       C:\WINDOWS
130 SOUNDMAN.EXE           18  8   normal       C:\WINDOWS
138 VTTimer.exe            12  5   normal       C:\WINDOWS\system32
144 VTtrayp.exe            12  5   normal       C:\WINDOWS\system32
150 egui.exe               202 63  normal       C:\Program Files\ESET\ESET Smart Security
1b8 ekrn.exe               8   15  normal       C:\Program Files\ESET\ESET Smart Security
1c4 ctfmon.exe             18  12  normal       C:\WINDOWS\system32
1e8 YahooMessenger.exe     779 333 normal       C:\PROGRA~1\Yahoo!\MESSEN~1
1f4 msnmsgr.exe            65  76  normal       C:\Program Files\Windows Live\Messenger
2a8 SeaPort.exe            5   6   normal       C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort
384 GoogleUpdate.exe       5   3   normal       C:\Program Files\Google\Update
494 slmdmsr.exe            4   1   normal       C:\WINDOWS\system32
084 wdfmgr.exe             4   1   normal       C:\WINDOWS\system32
75c SearchIndexer.exe      5   10  normal       C:\WINDOWS\system32
828 wscntfy.exe            20  9   normal       C:\WINDOWS\system32
aa0 wmiprvse.exe           8   7   normal       C:\WINDOWS\system32\wbem
bf0 alg.exe                5   2   normal       C:\WINDOWS\System32
e1c YahooMessenger.exe     9   9   normal       C:\PROGRA~1\Yahoo!\MESSEN~1
4a4 taskmgr.exe            110 130 high         C:\WINDOWS\system32
c5c PCMAV.exe              227 154 normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha
754 chrome.exe             74  52  normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
aac chrome.exe             30  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
a6c chrome.exe             10  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
920 SearchProtocolHost.exe 5   14  below normal C:\WINDOWS\system32
2bc svchost.exe            5   4   normal       C:\WINDOWS\system32
c38 SearchFilterHost.exe   9   9   below normal C:\WINDOWS\system32
a3c ExtMan.exe             155 88  normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib

cpu registers:
eax = 7ffde000
ebx = 00000000
ecx = 03360fda
edx = 00000002
esi = 03360fd5
edi = 0012fe68
eip = 0366cecc
esp = 0012fe04
ebp = 0012fe2c

stack dump:
0012fe04  17 58 40 00 48 a0 af 00 - 48 a0 af 00 ea 2e 40 00  .X@.H...H.....@.
0012fe14  b8 a0 af 00 48 50 4d 00 - 06 2f 40 00 66 00 40 00  .Q@.H..../@.fQ@.
0012fe24  50 00 40 00 54 fe 12 00 - 06 2f 40 00 1a fe a6 00  KT@.T..../@..Q@.
0012fe34  c0 00 00 00 b8 fe 12 00 - 27 2f 40 00 1f 01 00 00  ........'/@.+...
0012fe44  27 ff 12 00 27 2f 40 00 - 54 fe 12 00 17 58 40 00  ,...'/@.T....X@.
0012fe54  f8 f1 a3 00 f8 f1 a3 00 - 27 01 00 00 d0 54 40 00  ....,...'/@.h...
0012fe64  2c de aa 00 2c ff 12 00 - fe 00 00 00 00 00 13 00  .X@...........D.
0012fe74  10 fe 12 00 03 00 00 00 - 00 bc 44 00 b4 fe 12 00  ,....S@.....t...
0012fe84  b8 fe 12 00 e8 de aa 00 - 98 fe 12 00 5d bd 44 00  ....(.D.....].D.
0012fe94  e8 fe 12 00 f8 fe 12 00 - aa bd 44 00 e8 fe 12 00  ..........D.....
0012fea4  24 fb c4 00 00 00 00 00 - 02 00 00 00 28 a0 af 00  $...........x...
0012feb4  08 a0 af 00 38 a0 af 00 - b0 4e b2 00 38 4e b2 00  ....8....N..8N..
0012fec4  00 f0 12 00 00 00 03 00 - 04 00 00 00 00 10 00 00  ................
0012fed4  00 10 00 00 04 00 00 00 - 00 00 02 00 07 00 00 00  ................
0012fee4  2c ff 12 00 6c ff 12 00 - a0 c1 44 00 6c ff 12 00  ,...l.....D.l...
0012fef4  6c ff 12 00 04 ff 12 00 - 9e c4 44 00 6c ff 12 00  l.........D.l...
0012ff04  8c ff 12 00 29 c5 44 00 - 6c ff 12 00 24 fb c4 00  ....).D.l...$...
0012ff14  c0 f0 a1 00 78 ff 12 00 - 00 00 00 00 00 00 00 00  ....x...........
0012ff24  00 00 00 00 00 00 00 00 - 78 a0 a6 00 b8 cd a3 00  ........x.......
0012ff34  d8 a0 a9 00 00 00 00 00 - 68 83 44 85 20 30 5f 85  ........h.D..0_.

disassembling:
00404f44    public System.@Halt0:            ; function entry point
00404f44 49   push    ebx
00404f45      push    esi
00404f46      push    edi
00404f47      push    ebp
00404f48      mov     ebx, $4dd7c4
00404f4d      mov     edi, $4db044
00404f52      cmp     byte ptr [ebx+$28], 0
00404f56      jnz     loc_404f6c
00404f58      cmp     dword ptr [edi], 0
00404f5b      jz      loc_404f6c
00404f5d      mov     eax, [edi]
00404f5f      mov     esi, eax
00404f61      xor     eax, eax
00404f63      mov     [edi], eax
00404f65    > call    esi
00404f67      cmp     dword ptr [edi], 0
00404f6a      jnz     loc_404f5d
00404f6c      cmp     dword ptr [$4d5004], 0
00404f73      jz      loc_404f86
00404f75      call    -$156 ($404e24)        ; System.MakeErrorMessage
00404f7a      call    +$4a88d ($44f80c)      ; madExcept.InterceptWriteErrorMessage
00404f7f      xor     eax, eax
00404f81      mov     [$4d5004], eax
00404f86      cmp     byte ptr [ebx+$28], 2
00404f8a      jnz     loc_404f9a
00404f8c      cmp     dword ptr [$4d5000], 0
00404f93      jnz     loc_404f9a
00404f95      xor     eax, eax
00404f97      mov     [ebx+$c], eax
00404f9a      call    +$4a9b1 ($44f950)      ; madExcept.InterceptFinalizeUnits
00404f9f      cmp     byte ptr [ebx+$28], 1
00404fa3      jbe     loc_404fae
00404fa5      cmp     dword ptr [$4d5000], 0
00404fac      jz      loc_404fd1
00404fae      mov     edi, [ebx+$10]
00404fb1      test    edi, edi
00404fb3      jz      loc_404fd1
00404fb5      mov     eax, edi
00404fb7      call    +$1d84 ($406d40)       ; System.UnregisterModule
00404fbc      mov     ebp, [ebx+$10]
00404fbf      mov     esi, [ebp+$10]
00404fc2      cmp     esi, [ebp+4]
00404fc5      jz      loc_404fd1
00404fc7      test    esi, esi
00404fc9      jz      loc_404fd1
00404fcb      push    esi
00404fcc      call    -$3d0d ($4012c4)       ; System.FreeLibrary
00404fd1      call    -$332 ($404ca4)        ; System.UnsetExceptionHandler
00404fd6      cmp     byte ptr [ebx+$28], 1
00404fda      jnz     loc_404fdf
00404fdc      call    dword ptr [ebx+$24]
00404fdf      cmp     byte ptr [ebx+$28], 0
00404fe3      jz      loc_404fea
00404fe5      call    -$162 ($404e88)        ; System.ExitDll
00404fea      cmp     dword ptr [ebx], 0
00404fed      jnz     loc_405009
00404fef      cmp     dword ptr [$4db024], 0
00404ff6      jz      loc_404ffe
00404ff8      call    dword ptr [$4db024]
00404ffe      mov     eax, [$4d5000]
00405003      push    eax
00405004      call    -$3d65 ($4012a4)       ; System.ExitProcess
00405009      mov     eax, [ebx]
0040500b      mov     esi, eax
0040500d      mov     edi, ebx
0040500f      mov     ecx, $b
00405014      rep movsd
00405016      jmp     loc_404f86

date/time         : 2011-09-09, 11:28:13, 343ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 2 hours 19 minutes
program up time   : 4 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 514/958 MB (free/total)
free disk space   : (C:) 60,31 GB
display mode      : 1024x768, 32 bit
process id        : $718
allocated memory  : 9,12 MB
command line      : "C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib\ExtMan.exe" run
executable        : ExtMan.exe
exec. date/time   : 2011-09-06 09:10
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $8d7f6f94, $02e9af5b, $02e9af5b
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 033EB974. Read of address 033EB974.

thread $cec:
>> stack not accessible, exception location:
033eb974 +0 ???

thread $478:
7c90e9a9 +0a ntdll.dll              NtWaitForMultipleObjects
00450379 +0d ExtMan.exe   madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe   madExcept ThreadExceptFrame
>> created by thread $cec at:
77dfa17c +00 advapi32.dll

thread $330:
7c90e9a9 +0a ntdll.dll                 NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll              WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll              WaitForMultipleObjects
00450379 +0d ExtMan.exe      madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe      madExcept ThreadExceptFrame
>> created by thread $cec at:
032215be +00 IDMShellExt.dll

modules:
00400000 ExtMan.exe                       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib
02fd0000 Normaliz.dll    6.0.5441.0       C:\WINDOWS\system32
03220000 IDMShellExt.dll 6.0.6.4          C:\Program Files\Internet Download Manager
0ffd0000 rsaenh.dll      5.1.2600.2161    C:\WINDOWS\system32
10000000 guard32.dll     5.5.64714.1382   C:\WINDOWS\system32
4ffe0000 fltlib.dll      5.1.2600.2180    C:\WINDOWS\system32
5ad70000 uxtheme.dll     6.0.2900.2180    C:\WINDOWS\system32
5b0a0000 umdmxfrm.dll    5.1.2600.0       C:\WINDOWS\system32
5cd70000 serwvdrv.dll    5.1.2600.0       C:\WINDOWS\system32
5dca0000 iertutil.dll    7.0.5730.13      C:\WINDOWS\system32
661c0000 GRA8E1~1.DLL    12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ef0000 GrooveUtil.DLL  12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ff0000 GrooveNew.DLL   12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
71aa0000 WS2HELP.dll     5.1.2600.2180    C:\WINDOWS\system32
71ab0000 WS2_32.dll      5.1.2600.2180    C:\WINDOWS\system32
71ad0000 wsock32.dll     5.1.2600.2180    C:\WINDOWS\system32
71b20000 mpr.dll         5.1.2600.2180    C:\WINDOWS\system32
73000000 winspool.drv    5.1.2600.2180    C:\WINDOWS\system32
74720000 MSCTF.dll       5.1.2600.2180    C:\WINDOWS\system32
74c80000 oleacc.dll      4.2.5406.0       C:\WINDOWS\system32
755c0000 msctfime.ime    5.1.2600.2180    C:\WINDOWS\system32
76080000 MSVCP60.dll     6.2.3104.0       C:\WINDOWS\system32
76380000 msimg32.dll     5.1.2600.2180    C:\WINDOWS\system32
76390000 IMM32.DLL       5.1.2600.2180    C:\WINDOWS\system32
763b0000 comdlg32.dll    6.0.2900.2180    C:\WINDOWS\system32
76b40000 winmm.dll       5.1.2600.2180    C:\WINDOWS\system32
76bf0000 PSAPI.dll       5.1.2600.2180    C:\WINDOWS\system32
76d60000 iphlpapi.dll    5.1.2600.2180    C:\WINDOWS\system32
76fd0000 CLBCATQ.DLL     2001.12.4414.258 C:\WINDOWS\system32
77050000 COMRes.dll      2001.12.4414.258 C:\WINDOWS\system32
77120000 oleaut32.dll    5.1.2600.2180    C:\WINDOWS\system32
771b0000 WININET.dll     7.0.5730.13      C:\WINDOWS\system32
773d0000 comctl32.dll    6.0.2900.2180    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
774e0000 ole32.dll       5.1.2600.2180    C:\WINDOWS\system32
77920000 SETUPAPI.dll    5.1.2600.2180    C:\WINDOWS\system32
77a80000 CRYPT32.dll     5.131.2600.2180  C:\WINDOWS\system32
77b20000 MSASN1.dll      5.1.2600.2180    C:\WINDOWS\system32
77b40000 appHelp.dll     5.1.2600.2180    C:\WINDOWS\system32
77c00000 version.dll     5.1.2600.2180    C:\WINDOWS\system32
77c10000 msvcrt.dll      7.0.2600.2180    C:\WINDOWS\system32
77d40000 USER32.dll      5.1.2600.2180    C:\WINDOWS\system32
77dd0000 advapi32.dll    5.1.2600.2180    C:\WINDOWS\system32
77e70000 RPCRT4.dll      5.1.2600.2180    C:\WINDOWS\system32
77f10000 GDI32.dll       5.1.2600.2180    C:\WINDOWS\system32
77f60000 SHLWAPI.dll     6.0.2900.2995    C:\WINDOWS\system32
77fe0000 Secur32.dll     5.1.2600.2180    C:\WINDOWS\system32
78130000 MSVCR80.dll     8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86
7c630000 ATL80.DLL       8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa
7c800000 kernel32.dll    5.1.2600.2180    C:\WINDOWS\system32
7c900000 ntdll.dll       5.1.2600.2180    C:\WINDOWS\system32
7c9c0000 SHELL32.dll     6.0.2900.2180    C:\WINDOWS\system32

processes:
000 Idle                   0   0
004 System                 0   0   normal
37c smss.exe               0   0   normal       C:\WINDOWS\system32
3bc csrss.exe              62  63  normal       C:\WINDOWS\system32
3d8 winlogon.exe           44  14  high         C:\WINDOWS\system32
404 services.exe           4   2   normal       C:\WINDOWS\system32
410 lsass.exe              6   4   normal       C:\WINDOWS\system32
4c4 svchost.exe            4   1   normal       C:\WINDOWS\system32
518 svchost.exe            4   1   normal       C:\WINDOWS\system32
58c svchost.exe            11  36  normal       C:\WINDOWS\system32
5c4 AIPS.exe               4   3   normal       C:\Program Files\netcut\services
5f4 svchost.exe            4   1   normal       C:\WINDOWS\system32
674 svchost.exe            4   1   normal       C:\WINDOWS\system32
6e4 spoolsv.exe            4   4   normal       C:\WINDOWS\system32
0bc Explorer.EXE           307 147 normal       C:\WINDOWS
130 SOUNDMAN.EXE           18  8   normal       C:\WINDOWS
138 VTTimer.exe            12  5   normal       C:\WINDOWS\system32
144 VTtrayp.exe            12  5   normal       C:\WINDOWS\system32
150 egui.exe               202 63  normal       C:\Program Files\ESET\ESET Smart Security
1b8 ekrn.exe               8   14  normal       C:\Program Files\ESET\ESET Smart Security
1c4 ctfmon.exe             18  12  normal       C:\WINDOWS\system32
1e8 YahooMessenger.exe     776 332 normal       C:\PROGRA~1\Yahoo!\MESSEN~1
1f4 msnmsgr.exe            65  76  normal       C:\Program Files\Windows Live\Messenger
2a8 SeaPort.exe            5   6   normal       C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort
384 GoogleUpdate.exe       5   3   normal       C:\Program Files\Google\Update
494 slmdmsr.exe            4   1   normal       C:\WINDOWS\system32
084 wdfmgr.exe             4   1   normal       C:\WINDOWS\system32
75c SearchIndexer.exe      5   7   normal       C:\WINDOWS\system32
828 wscntfy.exe            20  9   normal       C:\WINDOWS\system32
aa0 wmiprvse.exe           8   7   normal       C:\WINDOWS\system32\wbem
bf0 alg.exe                5   2   normal       C:\WINDOWS\System32
e1c YahooMessenger.exe     9   9   normal       C:\PROGRA~1\Yahoo!\MESSEN~1
4a4 taskmgr.exe            110 130 high         C:\WINDOWS\system32
c5c PCMAV.exe              227 154 normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha
754 chrome.exe             74  52  normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
aac chrome.exe             30  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
a6c chrome.exe             10  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
920 SearchProtocolHost.exe 5   14  below normal C:\WINDOWS\system32
2bc svchost.exe            5   4   normal       C:\WINDOWS\system32
c38 SearchFilterHost.exe   9   9   below normal C:\WINDOWS\system32
718 ExtMan.exe             75  9   normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib

cpu registers:
eax = 7ffde000
ebx = 00000000
ecx = 03380fda
edx = 00000002
esi = 03380fd5
edi = 0012fe68
eip = 033eb974
esp = 0012fe04
ebp = 0012fe2c

stack dump:
0012fe04  17 58 40 00 18 a0 af 00 - 18 a0 af 00 ea 2e 40 00  .X@...........@.
0012fe14  08 51 40 00 18 50 4d 00 - 06 2f 40 00 66 00 40 00  .Q@....../@.fQ@.
0012fe24  50 00 40 00 54 fe 12 00 - 06 2f 40 00 1a fe 09 00  KT@.T..../@..Q@.
0012fe34  c0 00 00 00 b8 fe 12 00 - 27 2f 40 00 1f 01 00 00  ........'/@.+...
0012fe44  27 ff 12 00 27 2f 40 00 - 54 fe 12 00 17 58 40 00  ,...'/@.T....X@.
0012fe54  f8 f1 a3 00 f8 f1 a3 00 - 27 01 00 00 d0 54 40 00  ....,...'/@.h...
0012fe64  2c de aa 00 2c ff 12 00 - fe 00 00 00 00 00 13 00  .X@...........D.
0012fe74  10 fe 12 00 03 00 00 00 - 00 bc 44 00 b4 fe 12 00  ,....S@.....t...
0012fe84  b8 fe 12 00 e8 de aa 00 - 98 fe 12 00 5d bd 44 00  ....(.D.....].D.
0012fe94  e8 fe 12 00 f8 fe 12 00 - aa bd 44 00 e8 fe 12 00  ..........D.....
0012fea4  24 fb c4 00 00 00 00 00 - 02 00 00 00 58 a0 af 00  $...............
0012feb4  18 a0 af 00 28 a0 af 00 - c0 4d b2 00 a8 4d b2 00  ....(....M...M..
0012fec4  00 f0 12 00 00 00 03 00 - 04 00 00 00 00 10 00 00  ................
0012fed4  00 10 00 00 04 00 00 00 - 00 00 02 00 07 00 00 00  ................
0012fee4  2c ff 12 00 6c ff 12 00 - a0 c1 44 00 6c ff 12 00  ,...l.....D.l...
0012fef4  6c ff 12 00 04 ff 12 00 - 9e c4 44 00 6c ff 12 00  l.........D.l...
0012ff04  8c ff 12 00 29 c5 44 00 - 6c ff 12 00 24 fb c4 00  ....).D.l...$...
0012ff14  c0 f0 a1 00 78 ff 12 00 - 00 00 00 00 00 00 00 00  ....x...........
0012ff24  00 00 00 00 00 00 00 00 - 68 b6 09 01 b8 cd a3 00  ........h.......
0012ff34  18 30 0a 01 00 00 00 00 - e8 57 e2 85 20 10 7b 85  .0.......W....{.

disassembling:
7c90e99f public NtWaitForMultipleObjects:  ; function entry point
7c90e99f   mov     eax, $10e
7c90e9a4   mov     edx, $7ffe0300
7c90e9a9 > call    dword ptr [edx]        ; KiFastSystemCall (ntdll.dll)
7c90e9ab   ret     $14

Like Fan Page Majalah PC Media : http://www.facebook.com/pages/Majalah-P … 1773385582
Follow Akun Twitter Majalah PC Media : https://twitter.com/PCMedia_ID

**indraramadhan094** · 11-09-2011 07:08:26

indraramadhan094
Moderator
Offline

From: Kota Tangerang, Banten
Registered: 04-04-2010
Posts: 550
User Karma: 15

Re: PC Media Asgard Alpha & PC Media Asgard Beta

date/time         : 2011-09-09, 11:31:08, 953ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 2 hours 22 minutes
program up time   : 8 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 517/958 MB (free/total)
free disk space   : (C:) 60,31 GB
display mode      : 1024x768, 32 bit
process id        : $33c
allocated memory  : 9,13 MB
command line      : "C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib\ExtMan.exe" run
executable        : ExtMan.exe
exec. date/time   : 2011-09-06 09:10
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $8d7f6f94, $02e9af5b, $02e9af5b
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 026BB36C. Read of address 026BB36C.

thread $bb8:
>> stack not accessible, exception location:
026bb36c +0 ???

thread $f84:
7c90e9a9 +0a ntdll.dll              NtWaitForMultipleObjects
00450379 +0d ExtMan.exe   madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe   madExcept ThreadExceptFrame
>> created by thread $bb8 at:
77dfa17c +00 advapi32.dll

thread $49c:
7c90e9a9 +0a ntdll.dll                 NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll              WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll              WaitForMultipleObjects
00450379 +0d ExtMan.exe      madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe      madExcept ThreadExceptFrame
>> created by thread $bb8 at:
032215be +00 IDMShellExt.dll

modules:
00400000 ExtMan.exe                       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib
02fd0000 Normaliz.dll    6.0.5441.0       C:\WINDOWS\system32
03220000 IDMShellExt.dll 6.0.6.4          C:\Program Files\Internet Download Manager
0ffd0000 rsaenh.dll      5.1.2600.2161    C:\WINDOWS\system32
10000000 guard32.dll     5.5.64714.1382   C:\WINDOWS\system32
4ffe0000 fltlib.dll      5.1.2600.2180    C:\WINDOWS\system32
5ad70000 uxtheme.dll     6.0.2900.2180    C:\WINDOWS\system32
5b0a0000 umdmxfrm.dll    5.1.2600.0       C:\WINDOWS\system32
5cd70000 serwvdrv.dll    5.1.2600.0       C:\WINDOWS\system32
5dca0000 iertutil.dll    7.0.5730.13      C:\WINDOWS\system32
661c0000 GRA8E1~1.DLL    12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ef0000 GrooveUtil.DLL  12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ff0000 GrooveNew.DLL   12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
71aa0000 WS2HELP.dll     5.1.2600.2180    C:\WINDOWS\system32
71ab0000 WS2_32.dll      5.1.2600.2180    C:\WINDOWS\system32
71ad0000 wsock32.dll     5.1.2600.2180    C:\WINDOWS\system32
71b20000 mpr.dll         5.1.2600.2180    C:\WINDOWS\system32
73000000 winspool.drv    5.1.2600.2180    C:\WINDOWS\system32
74720000 MSCTF.dll       5.1.2600.2180    C:\WINDOWS\system32
74c80000 oleacc.dll      4.2.5406.0       C:\WINDOWS\system32
755c0000 msctfime.ime    5.1.2600.2180    C:\WINDOWS\system32
76080000 MSVCP60.dll     6.2.3104.0       C:\WINDOWS\system32
76380000 msimg32.dll     5.1.2600.2180    C:\WINDOWS\system32
76390000 IMM32.DLL       5.1.2600.2180    C:\WINDOWS\system32
763b0000 comdlg32.dll    6.0.2900.2180    C:\WINDOWS\system32
76b40000 winmm.dll       5.1.2600.2180    C:\WINDOWS\system32
76bf0000 PSAPI.dll       5.1.2600.2180    C:\WINDOWS\system32
76d60000 iphlpapi.dll    5.1.2600.2180    C:\WINDOWS\system32
76fd0000 CLBCATQ.DLL     2001.12.4414.258 C:\WINDOWS\system32
77050000 COMRes.dll      2001.12.4414.258 C:\WINDOWS\system32
77120000 oleaut32.dll    5.1.2600.2180    C:\WINDOWS\system32
771b0000 WININET.dll     7.0.5730.13      C:\WINDOWS\system32
773d0000 comctl32.dll    6.0.2900.2180    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
774e0000 ole32.dll       5.1.2600.2180    C:\WINDOWS\system32
77920000 SETUPAPI.dll    5.1.2600.2180    C:\WINDOWS\system32
77a80000 CRYPT32.dll     5.131.2600.2180  C:\WINDOWS\system32
77b20000 MSASN1.dll      5.1.2600.2180    C:\WINDOWS\system32
77b40000 appHelp.dll     5.1.2600.2180    C:\WINDOWS\system32
77c00000 version.dll     5.1.2600.2180    C:\WINDOWS\system32
77c10000 msvcrt.dll      7.0.2600.2180    C:\WINDOWS\system32
77d40000 USER32.dll      5.1.2600.2180    C:\WINDOWS\system32
77dd0000 advapi32.dll    5.1.2600.2180    C:\WINDOWS\system32
77e70000 RPCRT4.dll      5.1.2600.2180    C:\WINDOWS\system32
77f10000 GDI32.dll       5.1.2600.2180    C:\WINDOWS\system32
77f60000 SHLWAPI.dll     6.0.2900.2995    C:\WINDOWS\system32
77fe0000 Secur32.dll     5.1.2600.2180    C:\WINDOWS\system32
78130000 MSVCR80.dll     8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86
7c630000 ATL80.DLL       8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa
7c800000 kernel32.dll    5.1.2600.2180    C:\WINDOWS\system32
7c900000 ntdll.dll       5.1.2600.2180    C:\WINDOWS\system32
7c9c0000 SHELL32.dll     6.0.2900.2180    C:\WINDOWS\system32

processes:
000 Idle                   0   0
004 System                 0   0   normal
37c smss.exe               0   0   normal       C:\WINDOWS\system32
3bc csrss.exe              62  63  normal       C:\WINDOWS\system32
3d8 winlogon.exe           44  14  high         C:\WINDOWS\system32
404 services.exe           4   2   normal       C:\WINDOWS\system32
410 lsass.exe              6   5   normal       C:\WINDOWS\system32
4c4 svchost.exe            4   1   normal       C:\WINDOWS\system32
518 svchost.exe            4   4   normal       C:\WINDOWS\system32
58c svchost.exe            11  35  normal       C:\WINDOWS\system32
5c4 AIPS.exe               4   3   normal       C:\Program Files\netcut\services
5f4 svchost.exe            4   1   normal       C:\WINDOWS\system32
674 svchost.exe            4   1   normal       C:\WINDOWS\system32
6e4 spoolsv.exe            4   4   normal       C:\WINDOWS\system32
0bc Explorer.EXE           373 265 normal       C:\WINDOWS
130 SOUNDMAN.EXE           18  8   normal       C:\WINDOWS
138 VTTimer.exe            12  5   normal       C:\WINDOWS\system32
144 VTtrayp.exe            12  5   normal       C:\WINDOWS\system32
150 egui.exe               202 63  normal       C:\Program Files\ESET\ESET Smart Security
1b8 ekrn.exe               8   16  normal       C:\Program Files\ESET\ESET Smart Security
1c4 ctfmon.exe             18  12  normal       C:\WINDOWS\system32
1e8 YahooMessenger.exe     771 330 normal       C:\PROGRA~1\Yahoo!\MESSEN~1
1f4 msnmsgr.exe            65  76  normal       C:\Program Files\Windows Live\Messenger
2a8 SeaPort.exe            5   6   normal       C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort
384 GoogleUpdate.exe       5   3   normal       C:\Program Files\Google\Update
494 slmdmsr.exe            4   1   normal       C:\WINDOWS\system32
084 wdfmgr.exe             4   1   normal       C:\WINDOWS\system32
75c SearchIndexer.exe      5   9   normal       C:\WINDOWS\system32
828 wscntfy.exe            20  9   normal       C:\WINDOWS\system32
aa0 wmiprvse.exe           8   7   normal       C:\WINDOWS\system32\wbem
bf0 alg.exe                5   2   normal       C:\WINDOWS\System32
e1c YahooMessenger.exe     9   9   normal       C:\PROGRA~1\Yahoo!\MESSEN~1
4a4 taskmgr.exe            110 130 high         C:\WINDOWS\system32
c5c PCMAV.exe              227 154 normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha
754 chrome.exe             74  52  normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
aac chrome.exe             30  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
a6c chrome.exe             10  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
920 SearchProtocolHost.exe 5   12  below normal C:\WINDOWS\system32
2bc svchost.exe            5   3   normal       C:\WINDOWS\system32
33c ExtMan.exe             90  16  normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib

cpu registers:
eax = 7ffdf000
ebx = 00000000
ecx = 028e0fda
edx = 00000002
esi = 028e0fd5
edi = 0012fe68
eip = 026bb36c
esp = 0012fe04
ebp = 0012fe2c

stack dump:
0012fe04  0b 1e 00 00 d8 fd 12 00 - 28 a0 af 00 ea 2e 40 00  ........(.....@.
0012fe14  38 a0 af 00 28 50 4d 00 - 06 2f 40 00 66 00 40 00  .Q@.(..../@.fQ@.
0012fe24  50 00 40 00 54 fe 12 00 - 06 2f 40 00 1a fe 08 00  KT@.T..../@..Q@.
0012fe34  c0 00 00 00 b8 fe 12 00 - 27 2f 40 00 1f 01 00 00  ........'/@.+...
0012fe44  27 ff 12 00 27 2f 40 00 - 54 fe 12 00 17 58 40 00  ,...'/@.T....X@.
0012fe54  88 d8 a5 00 88 d8 a5 00 - 27 01 00 00 d0 54 40 00  ....,...'/@.h...
0012fe64  2c de aa 00 2c ff 12 00 - fe 00 00 00 00 00 13 00  .X@...........D.
0012fe74  10 fe 12 00 03 00 00 00 - 00 bc 44 00 b4 fe 12 00  ,....S@.....t...
0012fe84  b8 fe 12 00 e8 de aa 00 - 98 fe 12 00 5d bd 44 00  ....(.D.....].D.
0012fe94  e8 fe 12 00 f8 fe 12 00 - aa bd 44 00 e8 fe 12 00  ..........D.....
0012fea4  24 fb c4 00 00 00 00 00 - 02 00 00 00 18 a0 af 00  $...........h...
0012feb4  28 a0 af 00 08 a0 af 00 - 98 4e b2 00 60 ed b1 00  (........N..`...
0012fec4  00 f0 12 00 00 00 03 00 - 04 00 00 00 00 10 00 00  ................
0012fed4  00 10 00 00 04 00 00 00 - 00 00 02 00 07 00 00 00  ................
0012fee4  2c ff 12 00 6c ff 12 00 - a0 c1 44 00 6c ff 12 00  ,...l.....D.l...
0012fef4  6c ff 12 00 04 ff 12 00 - 9e c4 44 00 6c ff 12 00  l.........D.l...
0012ff04  8c ff 12 00 29 c5 44 00 - 6c ff 12 00 24 fb c4 00  ....).D.l...$...
0012ff14  c0 f0 a1 00 78 ff 12 00 - 00 00 00 00 00 00 00 00  ....x...........
0012ff24  00 00 00 00 00 00 00 00 - 08 24 08 01 48 b4 a5 00  .........$..H...
0012ff34  b8 9d 08 01 00 00 00 00 - 20 90 54 85 20 e0 24 86  ..........T...$.

disassembling:
7c90e99f public NtWaitForMultipleObjects:  ; function entry point
7c90e99f   mov     eax, $10e
7c90e9a4   mov     edx, $7ffe0300
7c90e9a9 > call    dword ptr [edx]        ; KiFastSystemCall (ntdll.dll)
7c90e9ab   ret     $14

date/time         : 2011-09-09, 11:30:17, 15ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 2 hours 21 minutes
program up time   : 6 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 506/958 MB (free/total)
free disk space   : (C:) 60,31 GB
display mode      : 1024x768, 32 bit
process id        : $960
allocated memory  : 9,05 MB
command line      : "C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib\ExtMan.exe" run
executable        : ExtMan.exe
exec. date/time   : 2011-09-06 09:10
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $8d7f6f94, $02e9af5b, $02e9af5b
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 02941C04. Read of address 02941C04.

thread $bdc:
>> stack not accessible, exception location:
02941c04 +0 ???

thread $758:
7c90e9a9 +0a ntdll.dll              NtWaitForMultipleObjects
00450379 +0d ExtMan.exe   madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe   madExcept ThreadExceptFrame
>> created by thread $bdc at:
77dfa17c +00 advapi32.dll

thread $680:
7c90e9a9 +0a ntdll.dll                 NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll              WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll              WaitForMultipleObjects
00450379 +0d ExtMan.exe      madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe      madExcept ThreadExceptFrame
>> created by thread $bdc at:
032215be +00 IDMShellExt.dll

modules:
00400000 ExtMan.exe                       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib
02fd0000 Normaliz.dll    6.0.5441.0       C:\WINDOWS\system32
03220000 IDMShellExt.dll 6.0.6.4          C:\Program Files\Internet Download Manager
0ffd0000 rsaenh.dll      5.1.2600.2161    C:\WINDOWS\system32
10000000 guard32.dll     5.5.64714.1382   C:\WINDOWS\system32
4ffe0000 fltlib.dll      5.1.2600.2180    C:\WINDOWS\system32
5ad70000 uxtheme.dll     6.0.2900.2180    C:\WINDOWS\system32
5b0a0000 umdmxfrm.dll    5.1.2600.0       C:\WINDOWS\system32
5cd70000 serwvdrv.dll    5.1.2600.0       C:\WINDOWS\system32
5dca0000 iertutil.dll    7.0.5730.13      C:\WINDOWS\system32
661c0000 GRA8E1~1.DLL    12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ef0000 GrooveUtil.DLL  12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ff0000 GrooveNew.DLL   12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
71aa0000 WS2HELP.dll     5.1.2600.2180    C:\WINDOWS\system32
71ab0000 WS2_32.dll      5.1.2600.2180    C:\WINDOWS\system32
71ad0000 wsock32.dll     5.1.2600.2180    C:\WINDOWS\system32
71b20000 mpr.dll         5.1.2600.2180    C:\WINDOWS\system32
73000000 winspool.drv    5.1.2600.2180    C:\WINDOWS\system32
74720000 MSCTF.dll       5.1.2600.2180    C:\WINDOWS\system32
74c80000 oleacc.dll      4.2.5406.0       C:\WINDOWS\system32
755c0000 msctfime.ime    5.1.2600.2180    C:\WINDOWS\system32
76080000 MSVCP60.dll     6.2.3104.0       C:\WINDOWS\system32
76380000 msimg32.dll     5.1.2600.2180    C:\WINDOWS\system32
76390000 IMM32.DLL       5.1.2600.2180    C:\WINDOWS\system32
763b0000 comdlg32.dll    6.0.2900.2180    C:\WINDOWS\system32
76b40000 winmm.dll       5.1.2600.2180    C:\WINDOWS\system32
76bf0000 PSAPI.dll       5.1.2600.2180    C:\WINDOWS\system32
76d60000 iphlpapi.dll    5.1.2600.2180    C:\WINDOWS\system32
76fd0000 CLBCATQ.DLL     2001.12.4414.258 C:\WINDOWS\system32
77050000 COMRes.dll      2001.12.4414.258 C:\WINDOWS\system32
77120000 oleaut32.dll    5.1.2600.2180    C:\WINDOWS\system32
771b0000 WININET.dll     7.0.5730.13      C:\WINDOWS\system32
773d0000 comctl32.dll    6.0.2900.2180    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
774e0000 ole32.dll       5.1.2600.2180    C:\WINDOWS\system32
77920000 SETUPAPI.dll    5.1.2600.2180    C:\WINDOWS\system32
77a80000 CRYPT32.dll     5.131.2600.2180  C:\WINDOWS\system32
77b20000 MSASN1.dll      5.1.2600.2180    C:\WINDOWS\system32
77b40000 appHelp.dll     5.1.2600.2180    C:\WINDOWS\system32
77c00000 version.dll     5.1.2600.2180    C:\WINDOWS\system32
77c10000 msvcrt.dll      7.0.2600.2180    C:\WINDOWS\system32
77d40000 USER32.dll      5.1.2600.2180    C:\WINDOWS\system32
77dd0000 advapi32.dll    5.1.2600.2180    C:\WINDOWS\system32
77e70000 RPCRT4.dll      5.1.2600.2180    C:\WINDOWS\system32
77f10000 GDI32.dll       5.1.2600.2180    C:\WINDOWS\system32
77f60000 SHLWAPI.dll     6.0.2900.2995    C:\WINDOWS\system32
77fe0000 Secur32.dll     5.1.2600.2180    C:\WINDOWS\system32
78130000 MSVCR80.dll     8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86
7c630000 ATL80.DLL       8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa
7c800000 kernel32.dll    5.1.2600.2180    C:\WINDOWS\system32
7c900000 ntdll.dll       5.1.2600.2180    C:\WINDOWS\system32
7c9c0000 SHELL32.dll     6.0.2900.2180    C:\WINDOWS\system32

processes:
000 Idle                   0   0
004 System                 0   0   normal
37c smss.exe               0   0   normal       C:\WINDOWS\system32
3bc csrss.exe              62  63  normal       C:\WINDOWS\system32
3d8 winlogon.exe           44  14  high         C:\WINDOWS\system32
404 services.exe           4   2   normal       C:\WINDOWS\system32
410 lsass.exe              6   5   normal       C:\WINDOWS\system32
4c4 svchost.exe            4   1   normal       C:\WINDOWS\system32
518 svchost.exe            4   4   normal       C:\WINDOWS\system32
58c svchost.exe            11  35  normal       C:\WINDOWS\system32
5c4 AIPS.exe               4   3   normal       C:\Program Files\netcut\services
5f4 svchost.exe            4   1   normal       C:\WINDOWS\system32
674 svchost.exe            4   1   normal       C:\WINDOWS\system32
6e4 spoolsv.exe            4   4   normal       C:\WINDOWS\system32
0bc Explorer.EXE           314 152 normal       C:\WINDOWS
130 SOUNDMAN.EXE           18  8   normal       C:\WINDOWS
138 VTTimer.exe            12  5   normal       C:\WINDOWS\system32
144 VTtrayp.exe            12  5   normal       C:\WINDOWS\system32
150 egui.exe               202 63  normal       C:\Program Files\ESET\ESET Smart Security
1b8 ekrn.exe               8   16  normal       C:\Program Files\ESET\ESET Smart Security
1c4 ctfmon.exe             18  12  normal       C:\WINDOWS\system32
1e8 YahooMessenger.exe     777 344 normal       C:\PROGRA~1\Yahoo!\MESSEN~1
1f4 msnmsgr.exe            65  76  normal       C:\Program Files\Windows Live\Messenger
2a8 SeaPort.exe            5   6   normal       C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort
384 GoogleUpdate.exe       5   3   normal       C:\Program Files\Google\Update
494 slmdmsr.exe            4   1   normal       C:\WINDOWS\system32
084 wdfmgr.exe             4   1   normal       C:\WINDOWS\system32
75c SearchIndexer.exe      5   8   normal       C:\WINDOWS\system32
828 wscntfy.exe            20  9   normal       C:\WINDOWS\system32
aa0 wmiprvse.exe           8   7   normal       C:\WINDOWS\system32\wbem
bf0 alg.exe                5   2   normal       C:\WINDOWS\System32
e1c YahooMessenger.exe     9   9   normal       C:\PROGRA~1\Yahoo!\MESSEN~1
4a4 taskmgr.exe            110 130 high         C:\WINDOWS\system32
c5c PCMAV.exe              227 154 normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha
754 chrome.exe             74  52  normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
aac chrome.exe             30  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
a6c chrome.exe             10  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
920 SearchProtocolHost.exe 5   12  below normal C:\WINDOWS\system32
2bc svchost.exe            5   4   normal       C:\WINDOWS\system32
120 SearchFilterHost.exe   9   10  below normal C:\WINDOWS\system32
960 ExtMan.exe             176 77  normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib

cpu registers:
eax = 7ffdd000
ebx = 00000000
ecx = 02e00fda
edx = 00000002
esi = 02e00fd5
edi = 0012fe68
eip = 02941c04
esp = 0012fe04
ebp = 0012fe2c

stack dump:
0012fe04  17 58 40 00 18 a0 af 00 - 18 a0 af 00 ea 2e 40 00  .X@...........@.
0012fe14  08 51 40 00 18 50 4d 00 - 06 2f 40 00 66 00 40 00  .Q@....../@.fQ@.
0012fe24  50 00 40 00 54 fe 12 00 - 06 2f 40 00 1a fe 09 00  KT@.T..../@..Q@.
0012fe34  c0 00 00 00 b8 fe 12 00 - 27 2f 40 00 1f 01 00 00  ........'/@.+...
0012fe44  27 ff 12 00 27 2f 40 00 - 54 fe 12 00 17 58 40 00  ,...'/@.T....X@.
0012fe54  f8 f1 a3 00 f8 f1 a3 00 - 27 01 00 00 d0 54 40 00  ....,...'/@.h...
0012fe64  2c de aa 00 2c ff 12 00 - fe 00 00 00 00 00 13 00  .X@...........D.
0012fe74  10 fe 12 00 03 00 00 00 - 00 bc 44 00 b4 fe 12 00  ,....S@.....t...
0012fe84  b8 fe 12 00 e8 de aa 00 - 98 fe 12 00 5d bd 44 00  ....(.D.....].D.
0012fe94  e8 fe 12 00 f8 fe 12 00 - aa bd 44 00 e8 fe 12 00  ..........D.....
0012fea4  24 fb c4 00 00 00 00 00 - 02 00 00 00 58 a0 af 00  $...............
0012feb4  18 a0 af 00 28 a0 af 00 - c0 4d b2 00 a8 4d b2 00  ....(....M...M..
0012fec4  00 f0 12 00 00 00 03 00 - 04 00 00 00 00 10 00 00  ................
0012fed4  00 10 00 00 04 00 00 00 - 00 00 02 00 07 00 00 00  ................
0012fee4  2c ff 12 00 6c ff 12 00 - a0 c1 44 00 6c ff 12 00  ,...l.....D.l...
0012fef4  6c ff 12 00 04 ff 12 00 - 9e c4 44 00 6c ff 12 00  l.........D.l...
0012ff04  8c ff 12 00 29 c5 44 00 - 6c ff 12 00 24 fb c4 00  ....).D.l...$...
0012ff14  c0 f0 a1 00 78 ff 12 00 - 00 00 00 00 00 00 00 00  ....x...........
0012ff24  00 00 00 00 00 00 00 00 - 68 b6 09 01 b8 cd a3 00  ........h.......
0012ff34  18 30 0a 01 00 00 00 00 - 88 d3 56 85 20 24 54 85  .0........V..$T.

disassembling:
7c90e99f public NtWaitForMultipleObjects:  ; function entry point
7c90e99f   mov     eax, $10e
7c90e9a4   mov     edx, $7ffe0300
7c90e9a9 > call    dword ptr [edx]        ; KiFastSystemCall (ntdll.dll)
7c90e9ab   ret     $14

date/time         : 2011-09-09, 11:32:03, 312ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 2 hours 23 minutes
program up time   : 7 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 516/958 MB (free/total)
free disk space   : (C:) 60,31 GB
display mode      : 1024x768, 32 bit
process id        : $390
allocated memory  : 9,00 MB
command line      : "C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib\ExtMan.exe" run
executable        : ExtMan.exe
exec. date/time   : 2011-09-06 09:10
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $8d7f6f94, $02e9af5b, $02e9af5b
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 02207CEC. Read of address 02207CEC.

thread $ebc:
>> stack not accessible, exception location:
02207cec +0 ???

thread $df0:
7c90e9a9 +0a ntdll.dll              NtWaitForMultipleObjects
00450379 +0d ExtMan.exe   madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe   madExcept ThreadExceptFrame
>> created by thread $ebc at:
77dfa17c +00 advapi32.dll

thread $d8c:
7c90e9a9 +0a ntdll.dll                 NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll              WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll              WaitForMultipleObjects
00450379 +0d ExtMan.exe      madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe      madExcept ThreadExceptFrame
>> created by thread $ebc at:
032215be +00 IDMShellExt.dll

modules:
00400000 ExtMan.exe                       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib
02fd0000 Normaliz.dll    6.0.5441.0       C:\WINDOWS\system32
03220000 IDMShellExt.dll 6.0.6.4          C:\Program Files\Internet Download Manager
0ffd0000 rsaenh.dll      5.1.2600.2161    C:\WINDOWS\system32
10000000 guard32.dll     5.5.64714.1382   C:\WINDOWS\system32
4ffe0000 fltlib.dll      5.1.2600.2180    C:\WINDOWS\system32
5ad70000 uxtheme.dll     6.0.2900.2180    C:\WINDOWS\system32
5b0a0000 umdmxfrm.dll    5.1.2600.0       C:\WINDOWS\system32
5cd70000 serwvdrv.dll    5.1.2600.0       C:\WINDOWS\system32
5dca0000 iertutil.dll    7.0.5730.13      C:\WINDOWS\system32
661c0000 GRA8E1~1.DLL    12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ef0000 GrooveUtil.DLL  12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ff0000 GrooveNew.DLL   12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
71aa0000 WS2HELP.dll     5.1.2600.2180    C:\WINDOWS\system32
71ab0000 WS2_32.dll      5.1.2600.2180    C:\WINDOWS\system32
71ad0000 wsock32.dll     5.1.2600.2180    C:\WINDOWS\system32
71b20000 mpr.dll         5.1.2600.2180    C:\WINDOWS\system32
73000000 winspool.drv    5.1.2600.2180    C:\WINDOWS\system32
74720000 MSCTF.dll       5.1.2600.2180    C:\WINDOWS\system32
74c80000 oleacc.dll      4.2.5406.0       C:\WINDOWS\system32
755c0000 msctfime.ime    5.1.2600.2180    C:\WINDOWS\system32
76080000 MSVCP60.dll     6.2.3104.0       C:\WINDOWS\system32
76380000 msimg32.dll     5.1.2600.2180    C:\WINDOWS\system32
76390000 IMM32.DLL       5.1.2600.2180    C:\WINDOWS\system32
763b0000 comdlg32.dll    6.0.2900.2180    C:\WINDOWS\system32
76b40000 winmm.dll       5.1.2600.2180    C:\WINDOWS\system32
76bf0000 PSAPI.dll       5.1.2600.2180    C:\WINDOWS\system32
76d60000 iphlpapi.dll    5.1.2600.2180    C:\WINDOWS\system32
76fd0000 CLBCATQ.DLL     2001.12.4414.258 C:\WINDOWS\system32
77050000 COMRes.dll      2001.12.4414.258 C:\WINDOWS\system32
77120000 oleaut32.dll    5.1.2600.2180    C:\WINDOWS\system32
771b0000 WININET.dll     7.0.5730.13      C:\WINDOWS\system32
773d0000 comctl32.dll    6.0.2900.2180    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
774e0000 ole32.dll       5.1.2600.2180    C:\WINDOWS\system32
77920000 SETUPAPI.dll    5.1.2600.2180    C:\WINDOWS\system32
77a80000 CRYPT32.dll     5.131.2600.2180  C:\WINDOWS\system32
77b20000 MSASN1.dll      5.1.2600.2180    C:\WINDOWS\system32
77b40000 appHelp.dll     5.1.2600.2180    C:\WINDOWS\system32
77c00000 version.dll     5.1.2600.2180    C:\WINDOWS\system32
77c10000 msvcrt.dll      7.0.2600.2180    C:\WINDOWS\system32
77d40000 USER32.dll      5.1.2600.2180    C:\WINDOWS\system32
77dd0000 advapi32.dll    5.1.2600.2180    C:\WINDOWS\system32
77e70000 RPCRT4.dll      5.1.2600.2180    C:\WINDOWS\system32
77f10000 GDI32.dll       5.1.2600.2180    C:\WINDOWS\system32
77f60000 SHLWAPI.dll     6.0.2900.2995    C:\WINDOWS\system32
77fe0000 Secur32.dll     5.1.2600.2180    C:\WINDOWS\system32
78130000 MSVCR80.dll     8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86
7c630000 ATL80.DLL       8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa
7c800000 kernel32.dll    5.1.2600.2180    C:\WINDOWS\system32
7c900000 ntdll.dll       5.1.2600.2180    C:\WINDOWS\system32
7c9c0000 SHELL32.dll     6.0.2900.2180    C:\WINDOWS\system32

processes:
000 Idle                   0   0
004 System                 0   0   normal
37c smss.exe               0   0   normal       C:\WINDOWS\system32
3bc csrss.exe              62  63  normal       C:\WINDOWS\system32
3d8 winlogon.exe           44  14  high         C:\WINDOWS\system32
404 services.exe           4   2   normal       C:\WINDOWS\system32
410 lsass.exe              6   5   normal       C:\WINDOWS\system32
4c4 svchost.exe            4   1   normal       C:\WINDOWS\system32
518 svchost.exe            4   4   normal       C:\WINDOWS\system32
58c svchost.exe            11  35  normal       C:\WINDOWS\system32
5c4 AIPS.exe               4   3   normal       C:\Program Files\netcut\services
5f4 svchost.exe            4   1   normal       C:\WINDOWS\system32
674 svchost.exe            4   1   normal       C:\WINDOWS\system32
6e4 spoolsv.exe            4   4   normal       C:\WINDOWS\system32
0bc Explorer.EXE           373 264 normal       C:\WINDOWS
130 SOUNDMAN.EXE           18  8   normal       C:\WINDOWS
138 VTTimer.exe            12  5   normal       C:\WINDOWS\system32
144 VTtrayp.exe            12  5   normal       C:\WINDOWS\system32
150 egui.exe               202 63  normal       C:\Program Files\ESET\ESET Smart Security
1b8 ekrn.exe               8   14  normal       C:\Program Files\ESET\ESET Smart Security
1c4 ctfmon.exe             18  12  normal       C:\WINDOWS\system32
1e8 YahooMessenger.exe     771 328 normal       C:\PROGRA~1\Yahoo!\MESSEN~1
1f4 msnmsgr.exe            65  76  normal       C:\Program Files\Windows Live\Messenger
2a8 SeaPort.exe            5   6   normal       C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort
384 GoogleUpdate.exe       5   3   normal       C:\Program Files\Google\Update
494 slmdmsr.exe            4   1   normal       C:\WINDOWS\system32
084 wdfmgr.exe             4   1   normal       C:\WINDOWS\system32
75c SearchIndexer.exe      5   7   normal       C:\WINDOWS\system32
828 wscntfy.exe            20  9   normal       C:\WINDOWS\system32
aa0 wmiprvse.exe           8   7   normal       C:\WINDOWS\system32\wbem
bf0 alg.exe                5   2   normal       C:\WINDOWS\System32
e1c YahooMessenger.exe     9   9   normal       C:\PROGRA~1\Yahoo!\MESSEN~1
4a4 taskmgr.exe            110 130 high         C:\WINDOWS\system32
c5c PCMAV.exe              227 154 normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha
754 chrome.exe             74  52  normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
aac chrome.exe             30  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
a6c chrome.exe             10  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
920 SearchProtocolHost.exe 5   12  below normal C:\WINDOWS\system32
2bc svchost.exe            5   3   normal       C:\WINDOWS\system32
5bc SearchFilterHost.exe   5   8   below normal C:\WINDOWS\system32
390 ExtMan.exe             72  10  normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib

cpu registers:
eax = 7ffde000
ebx = 00000000
ecx = 023f0fda
edx = 00000002
esi = 023f0fd5
edi = 0012fe68
eip = 02207cec
esp = 0012fe04
ebp = 0012fe2c

stack dump:
0012fe04  17 58 40 00 08 a0 af 00 - 08 a0 af 00 ea 2e 40 00  .X@...........@.
0012fe14  18 a0 af 00 08 a0 4d 00 - 06 2f 40 00 66 00 40 00  .Q@....../@.fQ@.
0012fe24  50 00 40 00 54 fe 12 00 - 06 2f 40 00 1a fe 09 00  KT@.T..../@..Q@.
0012fe34  c0 00 00 00 b8 fe 12 00 - 27 2f 40 00 1f 01 00 00  ........'/@.+...
0012fe44  27 ff 12 00 27 2f 40 00 - 54 fe 12 00 17 58 40 00  ,...'/@.T....X@.
0012fe54  f8 f1 a3 00 f8 f1 a3 00 - 27 01 00 00 d0 54 40 00  ....,...'/@.h...
0012fe64  2c de aa 00 2c ff 12 00 - fe 00 00 00 00 00 13 00  .X@...........D.
0012fe74  10 fe 12 00 03 00 00 00 - 00 bc 44 00 b4 fe 12 00  ,....S@.....t...
0012fe84  b8 fe 12 00 e8 de aa 00 - 98 fe 12 00 5d bd 44 00  ....(.D.....].D.
0012fe94  e8 fe 12 00 f8 fe 12 00 - aa bd 44 00 e8 fe 12 00  ..........D.....
0012fea4  24 fb c4 00 00 00 00 00 - 02 00 00 00 58 a0 af 00  $...............
0012feb4  08 a0 af 00 28 a0 af 00 - c0 4d b2 00 a8 4d b2 00  ....(....M...M..
0012fec4  00 f0 12 00 00 00 03 00 - 04 00 00 00 00 10 00 00  ................
0012fed4  00 10 00 00 04 00 00 00 - 00 00 02 00 07 00 00 00  ................
0012fee4  2c ff 12 00 6c ff 12 00 - a0 c1 44 00 6c ff 12 00  ,...l.....D.l...
0012fef4  6c ff 12 00 04 ff 12 00 - 9e c4 44 00 6c ff 12 00  l.........D.l...
0012ff04  8c ff 12 00 29 c5 44 00 - 6c ff 12 00 24 fb c4 00  ....).D.l...$...
0012ff14  c0 f0 a1 00 78 ff 12 00 - 00 00 00 00 00 00 00 00  ....x...........
0012ff24  00 00 00 00 00 00 00 00 - 68 b6 09 01 b8 cd a3 00  ........h.......
0012ff34  18 30 0a 01 00 00 00 00 - 00 e3 42 85 20 30 77 85  .0........B..0w.

disassembling:
7c90e99f public NtWaitForMultipleObjects:  ; function entry point
7c90e99f   mov     eax, $10e
7c90e9a4   mov     edx, $7ffe0300
7c90e9a9 > call    dword ptr [edx]        ; KiFastSystemCall (ntdll.dll)
7c90e9ab   ret     $14

date/time         : 2011-09-09, 11:33:03, 875ms
computer name     : INTER1
user name         : Administrator <admin>
registered owner  : Zlatan Ibrahimovic / Internazionale
operating system  : Windows XP Service Pack 2 build 2600
system language   : Indonesian
system up time    : 2 hours 24 minutes
program up time   : 7 seconds
processors        : 2x Intel(R) Pentium(R) D CPU 2.66GHz
physical memory   : 526/958 MB (free/total)
free disk space   : (C:) 60,31 GB
display mode      : 1024x768, 32 bit
process id        : $b14
allocated memory  : 9,07 MB
command line      : "C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib\ExtMan.exe" run
executable        : ExtMan.exe
exec. date/time   : 2011-09-06 09:10
compiled with     : Delphi 2006/07
madExcept version : 3.0m beta 1
contact name      : Indra
contact email     : indra.ramadhan094@gmail.com
callstack crc     : $8d7f6f94, $02e9af5b, $02e9af5b
exception number  : 1
exception class   : EAccessViolation
exception message : Access violation at address 01F2CAC4. Read of address 01F2CAC4.

thread $cc0:
>> stack not accessible, exception location:
01f2cac4 +0 ???

thread $8c4:
7c90e9a9 +0a ntdll.dll              NtWaitForMultipleObjects
00450379 +0d ExtMan.exe   madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe   madExcept ThreadExceptFrame
>> created by thread $cc0 at:
77dfa17c +00 advapi32.dll

thread $884:
7c90e9a9 +0a ntdll.dll                 NtWaitForMultipleObjects
7c8094ec +00 kernel32.dll              WaitForMultipleObjectsEx
7c809c81 +13 kernel32.dll              WaitForMultipleObjects
00450379 +0d ExtMan.exe      madExcept CallThreadProcSafe
004503e3 +37 ExtMan.exe      madExcept ThreadExceptFrame
>> created by thread $cc0 at:
032215be +00 IDMShellExt.dll

modules:
00400000 ExtMan.exe                       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib
02fd0000 Normaliz.dll    6.0.5441.0       C:\WINDOWS\system32
03220000 IDMShellExt.dll 6.0.6.4          C:\Program Files\Internet Download Manager
0ffd0000 rsaenh.dll      5.1.2600.2161    C:\WINDOWS\system32
10000000 guard32.dll     5.5.64714.1382   C:\WINDOWS\system32
4ffe0000 fltlib.dll      5.1.2600.2180    C:\WINDOWS\system32
5ad70000 uxtheme.dll     6.0.2900.2180    C:\WINDOWS\system32
5b0a0000 umdmxfrm.dll    5.1.2600.0       C:\WINDOWS\system32
5cd70000 serwvdrv.dll    5.1.2600.0       C:\WINDOWS\system32
5dca0000 iertutil.dll    7.0.5730.13      C:\WINDOWS\system32
661c0000 GRA8E1~1.DLL    12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ef0000 GrooveUtil.DLL  12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
68ff0000 GrooveNew.DLL   12.0.4518.1014   C:\PROGRA~1\MICROS~2\Office12
71aa0000 WS2HELP.dll     5.1.2600.2180    C:\WINDOWS\system32
71ab0000 WS2_32.dll      5.1.2600.2180    C:\WINDOWS\system32
71ad0000 wsock32.dll     5.1.2600.2180    C:\WINDOWS\system32
71b20000 mpr.dll         5.1.2600.2180    C:\WINDOWS\system32
73000000 winspool.drv    5.1.2600.2180    C:\WINDOWS\system32
74720000 MSCTF.dll       5.1.2600.2180    C:\WINDOWS\system32
74c80000 oleacc.dll      4.2.5406.0       C:\WINDOWS\system32
755c0000 msctfime.ime    5.1.2600.2180    C:\WINDOWS\system32
76080000 MSVCP60.dll     6.2.3104.0       C:\WINDOWS\system32
76380000 msimg32.dll     5.1.2600.2180    C:\WINDOWS\system32
76390000 IMM32.DLL       5.1.2600.2180    C:\WINDOWS\system32
763b0000 comdlg32.dll    6.0.2900.2180    C:\WINDOWS\system32
76b40000 winmm.dll       5.1.2600.2180    C:\WINDOWS\system32
76bf0000 PSAPI.dll       5.1.2600.2180    C:\WINDOWS\system32
76d60000 iphlpapi.dll    5.1.2600.2180    C:\WINDOWS\system32
76fd0000 CLBCATQ.DLL     2001.12.4414.258 C:\WINDOWS\system32
77050000 COMRes.dll      2001.12.4414.258 C:\WINDOWS\system32
77120000 oleaut32.dll    5.1.2600.2180    C:\WINDOWS\system32
771b0000 WININET.dll     7.0.5730.13      C:\WINDOWS\system32
773d0000 comctl32.dll    6.0.2900.2180    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
774e0000 ole32.dll       5.1.2600.2180    C:\WINDOWS\system32
77920000 SETUPAPI.dll    5.1.2600.2180    C:\WINDOWS\system32
77a80000 CRYPT32.dll     5.131.2600.2180  C:\WINDOWS\system32
77b20000 MSASN1.dll      5.1.2600.2180    C:\WINDOWS\system32
77b40000 appHelp.dll     5.1.2600.2180    C:\WINDOWS\system32
77c00000 version.dll     5.1.2600.2180    C:\WINDOWS\system32
77c10000 msvcrt.dll      7.0.2600.2180    C:\WINDOWS\system32
77d40000 USER32.dll      5.1.2600.2180    C:\WINDOWS\system32
77dd0000 advapi32.dll    5.1.2600.2180    C:\WINDOWS\system32
77e70000 RPCRT4.dll      5.1.2600.2180    C:\WINDOWS\system32
77f10000 GDI32.dll       5.1.2600.2180    C:\WINDOWS\system32
77f60000 SHLWAPI.dll     6.0.2900.2995    C:\WINDOWS\system32
77fe0000 Secur32.dll     5.1.2600.2180    C:\WINDOWS\system32
78130000 MSVCR80.dll     8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86
7c630000 ATL80.DLL       8.0.50727.6195   C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa
7c800000 kernel32.dll    5.1.2600.2180    C:\WINDOWS\system32
7c900000 ntdll.dll       5.1.2600.2180    C:\WINDOWS\system32
7c9c0000 SHELL32.dll     6.0.2900.2180    C:\WINDOWS\system32

processes:
000 Idle                   0   0
004 System                 0   0   normal
37c smss.exe               0   0   normal       C:\WINDOWS\system32
3bc csrss.exe              62  63  normal       C:\WINDOWS\system32
3d8 winlogon.exe           44  14  high         C:\WINDOWS\system32
404 services.exe           4   2   normal       C:\WINDOWS\system32
410 lsass.exe              6   5   normal       C:\WINDOWS\system32
4c4 svchost.exe            4   1   normal       C:\WINDOWS\system32
518 svchost.exe            4   4   normal       C:\WINDOWS\system32
58c svchost.exe            11  34  normal       C:\WINDOWS\system32
5c4 AIPS.exe               4   3   normal       C:\Program Files\netcut\services
5f4 svchost.exe            4   1   normal       C:\WINDOWS\system32
674 svchost.exe            4   1   normal       C:\WINDOWS\system32
6e4 spoolsv.exe            4   4   normal       C:\WINDOWS\system32
0bc Explorer.EXE           375 264 normal       C:\WINDOWS
130 SOUNDMAN.EXE           18  8   normal       C:\WINDOWS
138 VTTimer.exe            12  5   normal       C:\WINDOWS\system32
144 VTtrayp.exe            12  5   normal       C:\WINDOWS\system32
150 egui.exe               202 63  normal       C:\Program Files\ESET\ESET Smart Security
1b8 ekrn.exe               8   14  normal       C:\Program Files\ESET\ESET Smart Security
1c4 ctfmon.exe             18  12  normal       C:\WINDOWS\system32
1e8 YahooMessenger.exe     772 328 normal       C:\PROGRA~1\Yahoo!\MESSEN~1
1f4 msnmsgr.exe            65  76  normal       C:\Program Files\Windows Live\Messenger
2a8 SeaPort.exe            5   6   normal       C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort
384 GoogleUpdate.exe       5   3   normal       C:\Program Files\Google\Update
494 slmdmsr.exe            4   1   normal       C:\WINDOWS\system32
084 wdfmgr.exe             4   1   normal       C:\WINDOWS\system32
75c SearchIndexer.exe      5   7   normal       C:\WINDOWS\system32
828 wscntfy.exe            20  9   normal       C:\WINDOWS\system32
aa0 wmiprvse.exe           8   7   normal       C:\WINDOWS\system32\wbem
bf0 alg.exe                5   2   normal       C:\WINDOWS\System32
e1c YahooMessenger.exe     9   9   normal       C:\PROGRA~1\Yahoo!\MESSEN~1
4a4 taskmgr.exe            110 130 high         C:\WINDOWS\system32
c5c PCMAV.exe              227 154 normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha
754 chrome.exe             74  52  normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
aac chrome.exe             30  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
a6c chrome.exe             10  1   normal       C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application
920 SearchProtocolHost.exe 5   12  below normal C:\WINDOWS\system32
2bc svchost.exe            5   3   normal       C:\WINDOWS\system32
5bc SearchFilterHost.exe   5   10  below normal C:\WINDOWS\system32
b14 ExtMan.exe             75  10  normal       C:\Documents and Settings\Administrator\My Documents\Downloads\Asgard Alpha\lib

cpu registers:
eax = 7ffdf000
ebx = 00000000
ecx = 021b0fda
edx = 00000002
esi = 021b0fd5
edi = 0012fe68
eip = 01f2cac4
esp = 0012fe04
ebp = 0012fe2c

stack dump:
0012fe04  17 58 40 00 08 a0 af 00 - 08 a0 af 00 ea 2e 40 00  .X@...........@.
0012fe14  18 a0 af 00 08 a0 4d 00 - 06 2f 40 00 66 00 40 00  .Q@....../@.fQ@.
0012fe24  50 00 40 00 54 fe 12 00 - 06 2f 40 00 1a fe 09 00  KT@.T..../@..Q@.
0012fe34  c0 00 00 00 b8 fe 12 00 - 27 2f 40 00 1f 01 00 00  ........'/@.+...
0012fe44  27 ff 12 00 27 2f 40 00 - 54 fe 12 00 17 58 40 00  ,...'/@.T....X@.
0012fe54  f8 f1 a3 00 f8 f1 a3 00 - 27 01 00 00 d0 54 40 00  ....,...'/@.h...
0012fe64  2c de aa 00 2c ff 12 00 - fe 00 00 00 00 00 13 00  .X@...........D.
0012fe74  10 fe 12 00 03 00 00 00 - 00 bc 44 00 b4 fe 12 00  ,....S@.....t...
0012fe84  b8 fe 12 00 e8 de aa 00 - 98 fe 12 00 5d bd 44 00  ....(.D.....].D.
0012fe94  e8 fe 12 00 f8 fe 12 00 - aa bd 44 00 e8 fe 12 00  ..........D.....
0012fea4  24 fb c4 00 00 00 00 00 - 02 00 00 00 58 a0 af 00  $...............
0012feb4  08 a0 af 00 28 a0 af 00 - c0 4d b2 00 a8 4d b2 00  ....(....M...M..
0012fec4  00 f0 12 00 00 00 03 00 - 04 00 00 00 00 10 00 00  ................
0012fed4  00 10 00 00 04 00 00 00 - 00 00 02 00 07 00 00 00  ................
0012fee4  2c ff 12 00 6c ff 12 00 - a0 c1 44 00 6c ff 12 00  ,...l.....D.l...
0012fef4  6c ff 12 00 04 ff 12 00 - 9e c4 44 00 6c ff 12 00  l.........D.l...
0012ff04  8c ff 12 00 29 c5 44 00 - 6c ff 12 00 24 fb c4 00  ....).D.l...$...
0012ff14  c0 f0 a1 00 78 ff 12 00 - 00 00 00 00 00 00 00 00  ....x...........
0012ff24  00 00 00 00 00 00 00 00 - 68 b6 09 01 b8 cd a3 00  ........h.......
0012ff34  18 30 0a 01 00 00 00 00 - 20 90 54 85 08 48 f1 85  .0........T..H..

disassembling:
7c90e99f public NtWaitForMultipleObjects:  ; function entry point
7c90e99f   mov     eax, $10e
7c90e9a4   mov     edx, $7ffe0300
7c90e9a9 > call    dword ptr [edx]        ; KiFastSystemCall (ntdll.dll)
7c90e9ab   ret     $14

Like Fan Page Majalah PC Media : http://www.facebook.com/pages/Majalah-P … 1773385582
Follow Akun Twitter Majalah PC Media : https://twitter.com/PCMedia_ID

**hari** · 16-09-2011 14:02:01

hari
Senior Member
Offline

Registered: 03-04-2010
Posts: 320
User Karma: 25

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Saya coba Asgard Alpha di warnet yang dilengkapi DF 7 dan Avira.

Kemudian saya coba taskman.

Pertanyaannya : kenapa ada svchost.exe yang tidak ada keterangannya ?
Apakah ini berarti process tsb adalah milik virus/malware ?

Sebelumnya komp tsb sudah saya scan dgn PCMAV 5.4 Update Build3 & PCMAV 5.5 tidak ada masalah apa-apa ...

Dari halaman http://virusindonesia.com/2011/09/16/pc … ment-23204

Segala masukan dan laporan bug mengenai PC Media Asgard Beta silahkan dilaporkan melalui
http://virusindonesia.com/forum/viewtopic.php?id=314

Itu URL untuk laporannya ngga salah Om ? Koq ke topik Ragnarok Beta yang mustinya udah di tutup ? Buka topik baru utk Asgard Beta donk. Atau pindahkan topik Asgard Alpha untuk umum..

Last edited by hari (16-09-2011 21:40:00)

**fajar.anggiawan** · 19-09-2011 14:01:35

fajar.anggiawan
Super ModeratoЯ
Offline

Registered: 02-04-2010
Posts: 443
User Karma: 18

Re: PC Media Asgard Alpha & PC Media Asgard Beta

hari wrote:

Saya coba Asgard Alpha di warnet yang dilengkapi DF 7 dan Avira

Hmm sepertinya masalah priviledge sehingga proses tersebut tidak dapat diperiksa, nanti akan kami coba lagi.

hari wrote:

Itu URL untuk laporannya ngga salah

Sip

**MiloMen** · 20-09-2011 15:31:17

MiloMen
Trial Member
Offline

From: Indonesia
Registered: 02-04-2010
Posts: 43

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Pertama-pertama saya jelaskan komputer yang saya gunakan:

Prosesor: DualCore AMD Athlon 64 X2, 2800 MHz (14 x 200) 5600+
RAM: 4GB (DDR2-800 DDR2 SDRAM)
Motherboard: Gigabyte GA-MA790X-DS4
Sistem Operasi: Microsoft Windows 7 Ultimate Service Pack 1 (32-bit)

Ok langsung saja, saya menemukan beberapa bug dan false alarm pada PCMAV Asgard ON...

1. Saat pcmav pertama kali di jalankan terdapat pesan dibawah ini:

Apa arti pesan tersebut ??? pesan tersebut muncul saat ke adaan deepfreeze aktif apabila
deepfreeze di matikan maka pesan tersebut tidak akan muncul. deepfreeze yang saya
gunakan versi 7.21.020.3447

2. Gagal mengkarantina file yang di curigai virus. Perhatikan gambar dibawah ini:

3. PCMAV Asgard menditeksi bahwa program, BsMobileSDK.dll, setup.dll dan Other.base menggandung malware. apa benar file tersebut menggadung malware ??? Tolong di analisa lebih lanjut. Kalo ternyata file tersebut bukan virus tolong di perbaiki false alarm ini. http://www.mediafire.com/?8p4abod8dscfbtk

4. Di temukan saat scanning terdapat pesan File locked by another application or operating system. Apa maksudnya dari pesan tersebut ???

C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0f8cc51215cc4b430ac21fea70eaed11_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1b25999c58b33d8faf554a6c9860b050_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\586bdb27ed79c3b5c6aabc118f34eea7_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\6ba6086c3067cefe17e2616dfdc0ed22_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8e8238774706814308195276e2de4553_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\66c8b02dfd0a3cd27f11bdf69fa0f84c_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\56e36f2659fbb1173d30a7b1d7547115_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\05ce78548c96fc1f49356b61d44160dc_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\90a62f5c779a8a340d60b81ef456cc08_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e7b6e7a090bd6a9f3ae11444c7156cd3_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d1e102e44b1f7a09521db7d6faa77702_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\99c1f421ddf7f8a4efc7734421e1ca12_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b81b1f3e39e783c14c6dda20c1fc0ebd_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1b25999c58b33d8faf554a6c9860b050_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\56e36f2659fbb1173d30a7b1d7547115_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0f8cc51215cc4b430ac21fea70eaed11_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\05ce78548c96fc1f49356b61d44160dc_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\586bdb27ed79c3b5c6aabc118f34eea7_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\66c8b02dfd0a3cd27f11bdf69fa0f84c_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8e8238774706814308195276e2de4553_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\6ba6086c3067cefe17e2616dfdc0ed22_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\99c1f421ddf7f8a4efc7734421e1ca12_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d1e102e44b1f7a09521db7d6faa77702_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b81b1f3e39e783c14c6dda20c1fc0ebd_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\e7b6e7a090bd6a9f3ae11444c7156cd3_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\90a62f5c779a8a340d60b81ef456cc08_9d78cd43-cd43-4d77-8f68-424f29bf6312 [ - File locked by another application or operating system.]
C:\Windows\System32\Microsoft\Protect\Recovery\Recovery.dat [ - File locked by another application or operating system.]
C:\Windows\System32\Microsoft\Protect\Recovery\Recovery.dat.LOG1 [ - File locked by another application or operating system.]
C:\Windows\System32\Microsoft\Protect\Recovery\Recovery.dat.LOG2 [ - File locked by another application or operating system.]
C:\Windows\System32\Microsoft\Protect\Recovery\Recovery.dat{c43d3d97-7d20-11e0-84aa-001e101f82a7}.TM.blf [ - File locked by another application or operating system.]
C:\Windows\System32\Microsoft\Protect\Recovery\Recovery.dat{c43d3d97-7d20-11e0-84aa-001e101f82a7}.TMContainer00000000000000000001.regtrans-ms [ - File locked by another application or operating system.]
C:\Windows\System32\Microsoft\Protect\Recovery\Recovery.dat{c43d3d97-7d20-11e0-84aa-001e101f82a7}.TMContainer00000000000000000002.regtrans-ms [ - File locked by another application or operating system.]

5. Icon Scan with PCMAV tidak ada, perhatikan gambar dibawah ini:

6. Kritik dan Saran

Tolong buat team pcmav di buatkan uninstall pada PCMAV Asgard terkadang file pcmav masih tertinggal di C:\Windows\System32 seperti file catchnet.dll, catchurl.dll, PCMAVext.dll, RTPak.dll, RTPScan.dll, RTPSVC.exe, unrar.dll dan masih aktif di memory meskipun pcmav sudah di keluarkan (Exit).
Untuk PCMAV Asgard bisa tidak dibuat protable, portable yang saya maksud disini tidak menggunakan RTP-nya hanya PCMAV-CLN saja, tujuannya apabila RTP PCMAV Asgard tidak stabil bisa menggunakan PCMAV-CLN saja untuk keperluan membasmi virus.
Masalah Splash Screen PCMAV dibuat pilihan ON dan OFF.
Buat team PCMAV Asgard tidak perlu terburu-buru dalam merilis PCMAV Asgard ini. Pastikan semua dalam kondisi 100% stabil kalo perlu sebelum dirilis bisa dites kembali di forum ini untuk memastikan bahwa PCMAV Asgard stabil. Maksud saya ini agar pengguna tidak kecewa dalam menggunakan PCMAV Asgard terbaru ini.

Ok sampai disini analisa dari saya, kalo ada kata yang salah mohon di maklumi. Terima kasih. Salam dari MiloMen.

Last edited by MiloMen (20-09-2011 15:33:28)

BLOG MILOMEN || FACEBOOK || FOLLOW @blogmilomen

> PENGUMUMAN <

[ Closed ] PC Media Asgard Alpha & PC Media Asgard Beta (Page 1 of 2)

Posts [ 1 to 25 of 42 ]

1 Topic by fajar.anggiawan 06-09-2011 11:07:10

Topic: PC Media Asgard Alpha & PC Media Asgard Beta

2 Reply by Fajar 06-09-2011 12:19:11

Re: PC Media Asgard Alpha & PC Media Asgard Beta

3 Reply by MuamarKudo 06-09-2011 14:18:10

Re: PC Media Asgard Alpha & PC Media Asgard Beta

4 Reply by indraramadhan094 06-09-2011 22:40:42

Re: PC Media Asgard Alpha & PC Media Asgard Beta

5 Reply by hous3b4d 08-09-2011 20:21:53

Re: PC Media Asgard Alpha & PC Media Asgard Beta

6 Reply by indraramadhan094 08-09-2011 20:47:43

Re: PC Media Asgard Alpha & PC Media Asgard Beta

7 Reply by peace.wanderer 08-09-2011 21:35:33

Re: PC Media Asgard Alpha & PC Media Asgard Beta

8 Reply by meong 08-09-2011 23:26:13

Re: PC Media Asgard Alpha & PC Media Asgard Beta

9 Reply by fajar.anggiawan 09-09-2011 00:54:43

Re: PC Media Asgard Alpha & PC Media Asgard Beta

10 Reply by phrozen 09-09-2011 02:17:42

Re: PC Media Asgard Alpha & PC Media Asgard Beta

11 Reply by anjing_hitam 09-09-2011 08:52:52

Re: PC Media Asgard Alpha & PC Media Asgard Beta

12 Reply by hari 09-09-2011 09:00:01

Re: PC Media Asgard Alpha & PC Media Asgard Beta

13 Reply by indraramadhan094 09-09-2011 09:34:54

Re: PC Media Asgard Alpha & PC Media Asgard Beta

14 Reply by fajar.anggiawan 09-09-2011 10:37:35

Re: PC Media Asgard Alpha & PC Media Asgard Beta

15 Reply by anjing_hitam 09-09-2011 11:22:24

Re: PC Media Asgard Alpha & PC Media Asgard Beta

16 Reply by indraramadhan094 09-09-2011 12:34:34

Re: PC Media Asgard Alpha & PC Media Asgard Beta

17 Reply by meong 09-09-2011 17:05:51

Re: PC Media Asgard Alpha & PC Media Asgard Beta

18 Reply by Paray_Vx 09-09-2011 20:52:28

Re: PC Media Asgard Alpha & PC Media Asgard Beta

19 Reply by hari 09-09-2011 21:08:03

Re: PC Media Asgard Alpha & PC Media Asgard Beta

20 Reply by user 09-09-2011 22:07:50

Re: PC Media Asgard Alpha & PC Media Asgard Beta

21 Reply by indraramadhan094 11-09-2011 07:07:25

Re: PC Media Asgard Alpha & PC Media Asgard Beta

22 Reply by indraramadhan094 11-09-2011 07:08:26

Re: PC Media Asgard Alpha & PC Media Asgard Beta

23 Reply by hari 16-09-2011 14:02:01

Re: PC Media Asgard Alpha & PC Media Asgard Beta

24 Reply by fajar.anggiawan 19-09-2011 14:01:35

Re: PC Media Asgard Alpha & PC Media Asgard Beta

25 Reply by MiloMen 20-09-2011 15:31:17

Re: PC Media Asgard Alpha & PC Media Asgard Beta

Posts [ 1 to 25 of 42 ]