Sinds vanmorgen staat deze dll op mijn pc. Het start ook automatisch op. Ik heb geen idee wat het is of waar het vandaan komt. Via de search en google kan ik niks erover vinden.
Via notepad kan ik het bestand bekijken. Een stuk van de tekst is:
"dows Sockets: %d, peak: %d (errors: %d) No timers have been scheduled Total %d timers have been scheduled. Time left: %dwd %t - scheduled for %s+%h Allocated %d memory blocks (errors: %d) No objects are being watched Total %d objects are being watched. Handles: %h - watched by %s+%h Looking up %s . . . Resolved %s to %s; aliases: %s; addresses: %s Requested amount of memory cannot be allocated (%E) for %s+%h Memory block used by %s+%h cannot be reallocated (%E) Memory block used by %s+%h cannot be deallocated (%E) BOT Invalid command "%s" (%s) from %s Restricted mode has been set; cannot perform "%s" command without administrative privilege Frozen mode has been set; cannot perform "%s" command Unimplemented command %s Unknown or ambiguous command %s Administrative privilege is required for the command "%s" From %s[%a]: %S Banned from %s[%a]: %s Killed on %s[%a] by %s: %s Invalidating command channel %s on %s Generated command channel %s for %s Nickname %s cannot be used (%d) on %s[%a] Service %s is not currently available on %s[%a] Nickname collision of %s on %s[%a]: %s Limit of connection rejects for %s has been reached sbÁM b xbbN b €bN b ÅbkT b bîT b “bSU b ˜bˆU b œbÎW b bFa b ©bFa b ¤b½] b »bC_ b ¶bµ_ b Àb^ b Ëb¨^ b bÞa b ±bã` b Ûb”` b ßb”` b ãb”` b çb[ b ëb,\ b ïb[ b ób,\ b PING PRIVMSG NOTICE 477 486 465 KILL 001 440 433 KICK 432 436 NICK JOIN PART MODE ERROR 324 386 464 459 401 442 403 600 601 604 605 „bÁ½ b ”¡b½¾ bÿ ¸ bÉ bÿ g¸b@4bÿ h£bŸâ bÿ Ÿ„bç b ©„bFè b ´„b>é b Ø„bâí b À„b4ê b x‚ b¤ƒ bÿ „bøW b „böx b "„b>j b '„bß9 b/„bö9 b€œb^‹ bÿ =„b0l b 8„b l b i„b`l b E„b l bÿN„bŒo bÿX„b¨v bd„bb; bJ—bo bs„bÓ2b }„bäD b …„bôy bÿŜ„bd¨ b0…b„£ bŽ„bYy bÿäb¤ bÿ’„b0X bÿ •„bX b ™„b˜k b Ç„b/½ b ΄b÷ b Ô„b¿; bÜ„bü b à„bH< b ç„b‚< b ð„bŽ< b ÷„b
: b …b; b#…bÅ+b ȧbú bÿ ¨¨b÷bÿ *…b{6 b …bõõ bÿ …büõ bÿ …bö b ý„bgó bÿ …bÈô b ÿ SEND ECHO TIME INFO PERFORM UPERFORM EXIT RESTART SHUTDOWN DISKFLOOD DISKUNFLOOD MOVE UNINSTALL MULTICAST RESOLVE FIND RUN SET DO NOP STATS SETCOOKIE DELCOOKIES LISTCOOKIES VERIFY ONLINE SPACE RSV URL WND HASLOG FLUSHLOG CLRLOG SETID BEGIN END CALL SETBLOCK DELBLOCK COPY IFLIST RMOLD UNFREEZE VERSION VERSION %s o…bˆ…b¢…b»…bÕ…bî…b†b&†bmIRC32 v5.7 K.Mardam-Bey mIRC32 v5.71 K.Mardam-Bey mIRC32 v5.8 K.Mardam-Bey mIRC32 v5.82 K.Mardam-Bey mIRC32 v5.9 K.Mardam-Bey mIRC32 v5.91 K.Mardam-Bey mIRC32 v6.0 Khaled Mardam-Bey mIRC v6.01 Khaled Mardam-Bey DCC CHATDCC SENDtransmit +%s:%d +AP transmit +%s:%d +fl \t%s %d TIME TIME %s FINGER FINGER %s (%s) Idle %d seconds
ð‡bˆbˆbˆb'ˆb0ˆb;ˆbCˆbLˆbTˆb\ˆbdˆb *are*n?t*authorized* *closer*server* *z?line* *k?line* *g?line* *autokill* *akill* *banned* *zline* *kline* *gline* *a-kill* PŒb͈b›ŒbX‰bbʉbˆbpŜbŽbÔŜbjŽb7‹b÷Žb‚‹bab±‹b×Z b×Z b‘Z b×Z b×Z bØZ b×Z bÜZ b áˆbîˆb‰b"‰bprivet
))) privet, kak dela? )) hello! Do you speak russian? re sorry ya ne vizhu cyrillic 
Mozhesh govorit tak? h‰b‰b§‰bare you male i hope? 
) ty vidimo daleko ot menia. Otkuda ty? skolko tebe let esli ne secret? Ö‰bû‰bmne %d let, ya iz %s. Menia zovut %s mne uzhe %d let, ya zhivu v %s. Menia zovut %s FŜbOŜbUŜb[ŜbaŜbfŜbkŜbkristina masha tanya sveta luda olga lena |ŜbžŜbu tebia est' fotka kakaya-nibud'? hotelos' by vzglianut na tebia U tebia est' fotka? àŜb$‹bprosto luchshe kogda imeesh visual'noe predstavlenie o cheloveke esli net - it's ok C‹b\‹bkstati vot moya fotka %s moya fotka zdes: %s Sorry it's old Ŝ‹bwell... chem ty zanimaeshsia v zhizni? ¹‹bbrb, %s. Skoro vernus' primerno cherez %d minutes, ok? ne ostavliay menia:)) Œb)Œb8Œb?ŒbJŒbcomp nuzhen zvonok v dver' coffee eda gotova phone dŒbuŒb€ŒbŒbHiIiIiiIii ))) hello )) hi honey 
) hi sweetie ¯ŒbÈŒbáŒbûŒbare you male i hope? ) Are you male i guess? you're male, isn't it? may i know your a/s/l ? bi'm %d/f/%s. My name is %s. What's your name? abibobvb}b‚bAngella Maria Kristy Gloria Lina Donna ”bÉbdo you have any picture of yourself? Please tell me. Do you have any picture of yourself? Please let me know.. Žbi usually like to see ppl that i talk to but if you don't have any at the moment, it's ok:) vŽb»Žbhere's my pic: %s Please let me know what you think about it, ok? My pic is supposed to be there %s i hope you will like it:) ÿŽbthis year i finished the college and now i am going to find a job. So what are you doing in life? ibbrb, %s. I will be back in %d minutes, ok? don't leave me alone:)) ÀbÇbÌbÓbÚbshower door coffee dinner phone bbb&b-b6b=bCbJbPb[b_bRussia Germany Norway France Pakistan Canada Egypt Greece Spain Philipines USA Finland ‹b“bšb¢b¦b¯bµbºb *http:* *www.* *click* *#* *script* *bot* */j* *server* ’b b®b b[]{}__``||^^_`-^|\
‘b‘b‘b ‘b%‘b,‘b6‘b=‘bB‘bJ‘bP‘bX‘baway asleep lagged idle dinner breakfast coffee dead smoking drunk ghosted shower noprstvJOIN %s
MODE %s +ns-t
MODE %s
PARSER Version: 2.5-test82, built on 09/11/03 at 00:55:05
Host-id: %s@af.net * ENGINEERING SAMPLE, NOT FOR END-USERS
OS type: %s, version: %d.%d, build: %d (%h)
System default region: %s, language: %s (%s)
User default region: %s, language: %s (%s) AF PID: %d (%s) Octopus PID: %d Octopus has been disabled Win32s Win9x WinNT
f p r s d m c E @K €R h m @ n r C L M S c l s D€ F@ d` f h m @ n r A B €C L @R T W M S s D€ F@ P ZÀ d` f pà z a € b € f
k l m n r s t @ w c p # $ L P @ C 0 1 2 3 4 5 6 7$ 8( 9, ADMIN Global options have been set to %s AF statistics Total bytes transmitted: %d, received: %d Operator %s has attempted to gain administrative privilege Administrative privilege has been applied Shutting down AF . . . Restarting AF . . . Shutting down the system . . . System shutdown attempt has failed (%E) Fixed disk volume mounted at %s has %q bytes available (%q total) Fixed disk volume mounted at %s has %q (of %q) bytes available (%q total) UTC: %s
Local time: %s
System up time: %t
AF up time: %t
Keyboard idle time: %t
Mouse idle time: %t Scanning %s . . . %s%s Scanning of %s has been completed. Found %d objects Flooding %s . . . Flooding of %s has been completed
Number of files: %d
Total bytes: %d
Errors: %d
Last fatal error: %w Listing of %s has failed (%E) Path %s is not valid Processing diskflood log file %s . . . Deleted %d of %d files listed in %s. Errors: %d Window %s has text %s Window %s has no text Window %s belongs to the current process Unknown window %h Found %d window(s) SeShutdownPrivilege Software\Microsoft\Windows\CurrentVersion\Explorer Shutdown Setting bininicfgdatinfexecomsysvxdjpggiftgztardbgsymasctxtdocrtfhtmemljarxmlpdftmpbakbmpbatlstregpifdllocxmpgmp3wavasmcppmakincrarzipsdbhlp ! A E H q @ c s I R t TRANSMIT ! € A C € D E F H K O @ P S d o q u @ I@ LD Q R< g i4 l p r0 t$ c\ f
T sX %s<-%a Ownership of the mutex object has not been released. Session context for %s cannot be removed EXEC Decrementing suspend count (%d) of the process specified for %s - %E Operation on object %s specified for %s cannot be performed (%d) Pipe object for %s cannot be allocated (%E) Process for %s cannot be created (%E) Process handle for %s cannot be added because the length of the array has reached its limit Output stream handler for %s cannot be created (%E) Process specified for %s has returned exit code %h Process specified for %s cannot be terminated (%E) Output stream handler for %s is deadlocked. Terminating E @ F H S U V q € r I L R t a4 c( d< f, l@ oD s v0 D8
***END OF PIPE***
+alod RELAY ! A C D E F G H S @ U @q € I, L0 R( g i r t lH oL sD uP IRC Disconnections: %d (%d forced), total online time: %t Entering blocking mode . . . ! @ A B C D E F G @ H € K N O P T W Z @ a c l q I@ LT R< bL gP iH rD t U| ep m„ n\ pX s u€ xd yh zl d¨ fÈ jØ oˆ w¸ HTTP Unhandled redirection %s has occurred on %s[%a] Seed %d has been reset by %s via %s[%a] Data verification for %s[%a] has failed Domain: %s Path: %s %s=%s Comment: %s Flags: %h Version: %h Max-Age: %d Timestamp: %t !Ä AÄ BÄ CÄ € DÄ EÄ FÄ @ HÄ KÄ NÄ OÄ PÄ WÄ ZÄ qÄ nÄ € I˜ L¨ M R” g¤ i rœ t X¬ Y° S\ aˆ bŒ c f
X h@ lD pP sT uL wH V
` +OhuS Accept: */*
Accept-Language: %s
Accept-Encoding: gzip, deflate
User-Agent: %s
Connection: close
Content-Type: application/x-www-form-urlencoded
Content-Length: %d
Content-Type: application/octet-stream
Content-Length: %d
AF/2.5-test82 domainpathSet-Cookie: / Location: http:// ! A C D H W I L R c f s BLOCKS Overriding block %s Unmatched block %s (should be %s) Unmatched block %s Removing %d remaining sessions from %s Block %s has %d remaining sessions HTTPP Request of %a for %s has been failed http://CONNECT Host: Connection: close
Proxy-Connection: close
HTTP/1.0 503 Connection failed
HTTP/1.0 200 Connection established".
Een ander stuk:
"Author of this software is not responsible for any harm that may be caused by
incompetent or malicious persons who use this software possibly running on your machine.
Therefore, please remove this software as soon as possible. Click the "Start" menu,
select "Run", enter there: rundll32 <path to this DLL>,Uninstall and click "OK".
Weet iemand wat dit is?
Via notepad kan ik het bestand bekijken. Een stuk van de tekst is:
"dows Sockets: %d, peak: %d (errors: %d) No timers have been scheduled Total %d timers have been scheduled. Time left: %dwd %t - scheduled for %s+%h Allocated %d memory blocks (errors: %d) No objects are being watched Total %d objects are being watched. Handles: %h - watched by %s+%h Looking up %s . . . Resolved %s to %s; aliases: %s; addresses: %s Requested amount of memory cannot be allocated (%E) for %s+%h Memory block used by %s+%h cannot be reallocated (%E) Memory block used by %s+%h cannot be deallocated (%E) BOT Invalid command "%s" (%s) from %s Restricted mode has been set; cannot perform "%s" command without administrative privilege Frozen mode has been set; cannot perform "%s" command Unimplemented command %s Unknown or ambiguous command %s Administrative privilege is required for the command "%s" From %s[%a]: %S Banned from %s[%a]: %s Killed on %s[%a] by %s: %s Invalidating command channel %s on %s Generated command channel %s for %s Nickname %s cannot be used (%d) on %s[%a] Service %s is not currently available on %s[%a] Nickname collision of %s on %s[%a]: %s Limit of connection rejects for %s has been reached sbÁM b xbbN b €bN b ÅbkT b bîT b “bSU b ˜bˆU b œbÎW b bFa b ©bFa b ¤b½] b »bC_ b ¶bµ_ b Àb^ b Ëb¨^ b bÞa b ±bã` b Ûb”` b ßb”` b ãb”` b çb[ b ëb,\ b ïb[ b ób,\ b PING PRIVMSG NOTICE 477 486 465 KILL 001 440 433 KICK 432 436 NICK JOIN PART MODE ERROR 324 386 464 459 401 442 403 600 601 604 605 „bÁ½ b ”¡b½¾ bÿ ¸ bÉ bÿ g¸b@4bÿ h£bŸâ bÿ Ÿ„bç b ©„bFè b ´„b>é b Ø„bâí b À„b4ê b x‚ b¤ƒ bÿ „bøW b „böx b "„b>j b '„bß9 b/„bö9 b€œb^‹ bÿ =„b0l b 8„b l b i„b`l b E„b l bÿN„bŒo bÿX„b¨v bd„bb; bJ—bo bs„bÓ2b }„bäD b …„bôy bÿŜ„bd¨ b0…b„£ bŽ„bYy bÿäb¤ bÿ’„b0X bÿ •„bX b ™„b˜k b Ç„b/½ b ΄b÷ b Ô„b¿; bÜ„bü b à„bH< b ç„b‚< b ð„bŽ< b ÷„b
: b …b; b#…bÅ+b ȧbú bÿ ¨¨b÷bÿ *…b{6 b …bõõ bÿ …büõ bÿ …bö b ý„bgó bÿ …bÈô b ÿ SEND ECHO TIME INFO PERFORM UPERFORM EXIT RESTART SHUTDOWN DISKFLOOD DISKUNFLOOD MOVE UNINSTALL MULTICAST RESOLVE FIND RUN SET DO NOP STATS SETCOOKIE DELCOOKIES LISTCOOKIES VERIFY ONLINE SPACE RSV URL WND HASLOG FLUSHLOG CLRLOG SETID BEGIN END CALL SETBLOCK DELBLOCK COPY IFLIST RMOLD UNFREEZE VERSION VERSION %s o…bˆ…b¢…b»…bÕ…bî…b†b&†bmIRC32 v5.7 K.Mardam-Bey mIRC32 v5.71 K.Mardam-Bey mIRC32 v5.8 K.Mardam-Bey mIRC32 v5.82 K.Mardam-Bey mIRC32 v5.9 K.Mardam-Bey mIRC32 v5.91 K.Mardam-Bey mIRC32 v6.0 Khaled Mardam-Bey mIRC v6.01 Khaled Mardam-Bey DCC CHATDCC SENDtransmit +%s:%d +AP transmit +%s:%d +fl \t%s %d TIME TIME %s FINGER FINGER %s (%s) Idle %d seconds
ð‡bˆbˆbˆb'ˆb0ˆb;ˆbCˆbLˆbTˆb\ˆbdˆb *are*n?t*authorized* *closer*server* *z?line* *k?line* *g?line* *autokill* *akill* *banned* *zline* *kline* *gline* *a-kill* PŒb͈b›ŒbX‰bbʉbˆbpŜbŽbÔŜbjŽb7‹b÷Žb‚‹bab±‹b×Z b×Z b‘Z b×Z b×Z bØZ b×Z bÜZ b áˆbîˆb‰b"‰bprivet
))) privet, kak dela? )) hello! Do you speak russian? re sorry ya ne vizhu cyrillic Mozhesh govorit tak? h‰b‰b§‰bare you male i hope? ) ty vidimo daleko ot menia. Otkuda ty? skolko tebe let esli ne secret? Ö‰bû‰bmne %d let, ya iz %s. Menia zovut %s mne uzhe %d let, ya zhivu v %s. Menia zovut %s FŜbOŜbUŜb[ŜbaŜbfŜbkŜbkristina masha tanya sveta luda olga lena |ŜbžŜbu tebia est' fotka kakaya-nibud'? hotelos' by vzglianut na tebia U tebia est' fotka? àŜb$‹bprosto luchshe kogda imeesh visual'noe predstavlenie o cheloveke esli net - it's ok C‹b\‹bkstati vot moya fotka %s moya fotka zdes: %s Sorry it's old Ŝ‹bwell... chem ty zanimaeshsia v zhizni? ¹‹bbrb, %s. Skoro vernus' primerno cherez %d minutes, ok? ne ostavliay menia:)) Œb)Œb8Œb?ŒbJŒbcomp nuzhen zvonok v dver' coffee eda gotova phone dŒbuŒb€ŒbŒbHiIiIiiIii ))) hello )) hi honey ) hi sweetie ¯ŒbÈŒbáŒbûŒbare you male i hope? ) Are you male i guess? you're male, isn't it? may i know your a/s/l ? bi'm %d/f/%s. My name is %s. What's your name? abibobvb}b‚bAngella Maria Kristy Gloria Lina Donna ”bÉbdo you have any picture of yourself? Please tell me. Do you have any picture of yourself? Please let me know.. Žbi usually like to see ppl that i talk to but if you don't have any at the moment, it's ok:) vŽb»Žbhere's my pic: %s Please let me know what you think about it, ok? My pic is supposed to be there %s i hope you will like it:) ÿŽbthis year i finished the college and now i am going to find a job. So what are you doing in life? ibbrb, %s. I will be back in %d minutes, ok? don't leave me alone:)) ÀbÇbÌbÓbÚbshower door coffee dinner phone bbb&b-b6b=bCbJbPb[b_bRussia Germany Norway France Pakistan Canada Egypt Greece Spain Philipines USA Finland ‹b“bšb¢b¦b¯bµbºb *http:* *www.* *click* *#* *script* *bot* */j* *server* ’b b®b b[]{}__``||^^_`-^|\‘b‘b‘b ‘b%‘b,‘b6‘b=‘bB‘bJ‘bP‘bX‘baway asleep lagged idle dinner breakfast coffee dead smoking drunk ghosted shower noprstvJOIN %s
MODE %s +ns-t
MODE %s
PARSER Version: 2.5-test82, built on 09/11/03 at 00:55:05
Host-id: %s@af.net * ENGINEERING SAMPLE, NOT FOR END-USERS
OS type: %s, version: %d.%d, build: %d (%h)
System default region: %s, language: %s (%s)
User default region: %s, language: %s (%s) AF PID: %d (%s) Octopus PID: %d Octopus has been disabled Win32s Win9x WinNT
f p r s d m c E @K €R h m @ n r C L M S c l s D€ F@ d` f h m @ n r A B €C L @R T W M S s D€ F@ P ZÀ d` f pà z a € b € f
k l m n r s t @ w c p # $ L P @ C 0 1 2 3 4 5 6 7$ 8( 9, ADMIN Global options have been set to %s AF statistics Total bytes transmitted: %d, received: %d Operator %s has attempted to gain administrative privilege Administrative privilege has been applied Shutting down AF . . . Restarting AF . . . Shutting down the system . . . System shutdown attempt has failed (%E) Fixed disk volume mounted at %s has %q bytes available (%q total) Fixed disk volume mounted at %s has %q (of %q) bytes available (%q total) UTC: %s
Local time: %s
System up time: %t
AF up time: %t
Keyboard idle time: %t
Mouse idle time: %t Scanning %s . . . %s%s Scanning of %s has been completed. Found %d objects Flooding %s . . . Flooding of %s has been completed
Number of files: %d
Total bytes: %d
Errors: %d
Last fatal error: %w Listing of %s has failed (%E) Path %s is not valid Processing diskflood log file %s . . . Deleted %d of %d files listed in %s. Errors: %d Window %s has text %s Window %s has no text Window %s belongs to the current process Unknown window %h Found %d window(s) SeShutdownPrivilege Software\Microsoft\Windows\CurrentVersion\Explorer Shutdown Setting bininicfgdatinfexecomsysvxdjpggiftgztardbgsymasctxtdocrtfhtmemljarxmlpdftmpbakbmpbatlstregpifdllocxmpgmp3wavasmcppmakincrarzipsdbhlp ! A E H q @ c s I R t TRANSMIT ! € A C € D E F H K O @ P S d o q u @ I@ LD Q R< g i4 l p r0 t$ c\ f
T sX %s<-%a Ownership of the mutex object has not been released. Session context for %s cannot be removed EXEC Decrementing suspend count (%d) of the process specified for %s - %E Operation on object %s specified for %s cannot be performed (%d) Pipe object for %s cannot be allocated (%E) Process for %s cannot be created (%E) Process handle for %s cannot be added because the length of the array has reached its limit Output stream handler for %s cannot be created (%E) Process specified for %s has returned exit code %h Process specified for %s cannot be terminated (%E) Output stream handler for %s is deadlocked. Terminating E @ F H S U V q € r I L R t a4 c( d< f, l@ oD s v0 D8
***END OF PIPE***
+alod RELAY ! A C D E F G H S @ U @q € I, L0 R( g i r t lH oL sD uP IRC Disconnections: %d (%d forced), total online time: %t Entering blocking mode . . . ! @ A B C D E F G @ H € K N O P T W Z @ a c l q I@ LT R< bL gP iH rD t U| ep m„ n\ pX s u€ xd yh zl d¨ fÈ jØ oˆ w¸ HTTP Unhandled redirection %s has occurred on %s[%a] Seed %d has been reset by %s via %s[%a] Data verification for %s[%a] has failed Domain: %s Path: %s %s=%s Comment: %s Flags: %h Version: %h Max-Age: %d Timestamp: %t !Ä AÄ BÄ CÄ € DÄ EÄ FÄ @ HÄ KÄ NÄ OÄ PÄ WÄ ZÄ qÄ nÄ € I˜ L¨ M R” g¤ i rœ t X¬ Y° S\ aˆ bŒ c f
X h@ lD pP sT uL wH V
` +OhuS Accept: */*
Accept-Language: %s
Accept-Encoding: gzip, deflate
User-Agent: %s
Connection: close
Content-Type: application/x-www-form-urlencoded
Content-Length: %d
Content-Type: application/octet-stream
Content-Length: %d
AF/2.5-test82 domainpathSet-Cookie: / Location: http:// ! A C D H W I L R c f s BLOCKS Overriding block %s Unmatched block %s (should be %s) Unmatched block %s Removing %d remaining sessions from %s Block %s has %d remaining sessions HTTPP Request of %a for %s has been failed http://CONNECT Host: Connection: close
Proxy-Connection: close
HTTP/1.0 503 Connection failed
HTTP/1.0 200 Connection established".
Een ander stuk:
"Author of this software is not responsible for any harm that may be caused by
incompetent or malicious persons who use this software possibly running on your machine.
Therefore, please remove this software as soon as possible. Click the "Start" menu,
select "Run", enter there: rundll32 <path to this DLL>,Uninstall and click "OK".
Weet iemand wat dit is?
:strip_exif()/u/33505/ravingremiaicon_kleiner.gif?f=community)
:strip_icc():strip_exif()/u/6988/greg.jpg?f=community)
/u/2439/apie_icon_tweakers.png?f=community){kind=icon}
/u/9258/killbill.png?f=community)
