Poslao: 20 Dec 2010 23:40
|
offline
- d_one
- Novi MyCity građanin
- Pridružio: 02 Maj 2010
- Poruke: 15
|
Napisano: 20 Dec 2010 23:17
Ako nije problem ja bih nastavio ovde, a vi eventualno prebacite topik.
---------------------
DDS (Ver_10-12-12.02) - NTFSx86
Run by jevta at 23:08:54.20 on Mon 12/20/2010
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.256.27 [GMT 1:00]
AV: AVG Internet Security 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Firewall *Enabled*
============== Running Processes ===============
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\AVG\AVG10\avgfws.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\AVG\AVG10\avgam.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\AVG\AVG10\avgemcx.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\SeaMonkey\seamonkey.exe
C:\Documents and Settings\jevta\Desktop\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://eu.ask.com?o=102866&l=dis&gct=hp
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
uURLSearchHooks: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
BHO: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
TB: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [Smapp] c:\program files\analog devices\soundmax\SMTray.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 10.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Corel Graphics Suite 1117] c:\program files\corel\corel graphics 11\register\registration.exe /title="Corel Graphics Suite 11" /date=010311 serial=
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
============= SERVICES / DRIVERS ===============
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 25680]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 26064]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-9-7 249424]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 34384]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-11-9 299984]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-19 123472]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-19 30288]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2010-8-19 26192]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
S3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [2010-12-12 16472]
S3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [2010-12-12 11104]
=============== Created Last 30 ================
2010-12-20 20:44:19 -------- d-----w- c:\windows\system32\appmgmt
2010-12-19 12:35:40 -------- d-----w- c:\docume~1\jevta\applic~1\AVG10
2010-12-19 12:23:18 -------- d--h--w- c:\docume~1\alluse~1\applic~1\Common Files
2010-12-19 12:22:37 -------- d-----w- c:\docume~1\alluse~1\applic~1\AVG Security Toolbar
2010-12-19 12:12:38 -------- d-----w- c:\windows\system32\drivers\AVG
2010-12-19 12:12:38 -------- d-----w- c:\docume~1\alluse~1\applic~1\AVG10
2010-12-19 12:10:45 -------- d-----w- c:\program files\AVG
2010-12-19 11:59:20 -------- d-----w- c:\docume~1\alluse~1\applic~1\MFAData
2010-12-19 10:00:11 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2010-12-19 09:55:31 -------- d-----w- c:\windows\Corel
2010-12-19 09:54:00 -------- d-----w- c:\program files\common files\Corel
2010-12-19 09:52:08 -------- d-----w- c:\program files\Corel
2010-12-16 22:34:15 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Adobe
2010-12-12 18:31:07 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Identities
2010-12-12 18:25:17 725064 ----a-w- c:\windows\system32\pwNative.exe
2010-12-12 18:25:14 16472 ------w- c:\windows\system32\pwdrvio.sys
2010-12-12 18:25:14 11104 ------w- c:\windows\system32\pwdspio.sys
2010-12-12 18:25:00 -------- d-----w- c:\program files\MiniTool Partition Wizard Home Edition 5.2
2010-12-12 14:17:28 -------- d-----w- c:\program files\Yitsoft Software
2010-12-12 13:46:56 265728 -c----w- c:\windows\system32\dllcache\http.sys
2010-12-12 13:38:39 -------- d-----w- c:\program files\EASEUS
2010-12-12 11:24:15 13780 ------w- c:\windows\system32\drivers\pfc.sys
2010-12-12 11:23:30 -------- d-----w- C:\pdwork
2010-12-12 11:20:03 38160 ----a-w- c:\windows\system32\LMRTREND.dll
2010-12-12 11:20:03 182032 ----a-w- c:\windows\system32\dxtmsft3.dll
2010-12-12 11:20:03 140800 ----a-w- c:\windows\system32\tm20dec.ax
2010-12-12 11:19:57 63488 ----a-w- c:\windows\system32\unam4ie.exe
2010-12-12 11:19:52 5672 ----a-w- c:\windows\system32\quartz.vxd
2010-12-12 11:19:52 194320 ----a-w- c:\windows\system32\qcut.dll
2010-12-12 11:19:52 11776 ----a-w- c:\windows\system32\mciqtz.drv
2010-12-12 11:19:52 10240 ----a-w- c:\windows\system32\vidx16.dll
2010-12-12 11:19:49 4608 ----a-w- c:\windows\system32\w95inf32.dll
2010-12-12 11:19:49 2272 ----a-w- c:\windows\system32\w95inf16.dll
2010-12-12 11:18:02 306688 ----a-w- c:\windows\IsUninst.exe
2010-12-12 11:08:51 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2010-12-12 11:07:41 5824 ----a-w- c:\windows\system32\drivers\ASUSHWIO.SYS
2010-12-12 11:03:35 8703 ------r- c:\windows\system32\drivers\EIO.sys
2010-12-12 10:58:21 4122368 ----a-r- c:\windows\system32\drivers\ALCXWDM.SYS
2010-12-12 10:58:20 4096 -c--a-w- c:\windows\system32\dllcache\ksuser.dll
2010-12-12 10:58:20 4096 ----a-w- c:\windows\system32\ksuser.dll
2010-12-12 10:58:20 129536 ----a-w- c:\windows\system32\ksproxy.ax
2010-12-12 10:58:18 146048 -c--a-w- c:\windows\system32\dllcache\portcls.sys
2010-12-12 10:58:18 146048 ----a-w- c:\windows\system32\drivers\portcls.sys
2010-12-12 10:58:16 60160 -c--a-w- c:\windows\system32\dllcache\drmk.sys
2010-12-12 10:58:16 60160 ----a-w- c:\windows\system32\drivers\drmk.sys
2010-12-12 10:36:20 26 ----a-w- c:\windows\WINSTART.BAT
2010-12-12 10:36:20 123 ----a-w- c:\windows\TMPCPYIS.BAT
2010-12-12 10:36:20 122 ----a-w- c:\windows\TMPDELIS.BAT
2010-12-12 10:35:59 24 ----a-w- c:\windows\DOSSTART.BAT
2010-12-12 10:35:41 -------- d-----w- C:\OPTI931
2010-12-12 10:35:01 -------- d-----w- c:\documents and settings\jevta\WINDOWS
2010-12-12 10:12:10 -------- d-----w- c:\program files\VideoLAN
2010-12-12 10:04:10 -------- d-----w- c:\docume~1\alluse~1\applic~1\PC Drivers HeadQuarters
2010-12-12 09:56:24 -------- d-----w- c:\docume~1\jevta\applic~1\UseNeXT
2010-12-12 09:56:09 -------- d-----w- c:\program files\UseNeXT
2010-12-12 09:37:36 -------- d-----w- c:\program files\Conduit
2010-12-12 09:37:36 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Conduit
2010-12-12 09:37:35 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Softonic-Eng7
2010-12-12 09:37:33 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\ConduitEngine
2010-12-12 09:37:32 -------- d-----w- c:\program files\ConduitEngine
2010-12-12 09:37:30 -------- d-----w- c:\program files\Softonic-Eng7
2010-12-12 09:37:30 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Temp
2010-12-12 09:37:08 -------- d-----w- c:\windows\Logs
2010-12-12 09:33:26 -------- dc-h--w- c:\docume~1\alluse~1\applic~1\{45851E8A-52E0-42AF-8863-E2A92D63A514}
2010-12-12 09:33:25 -------- d-----w- c:\program files\SmartTweak Software
2010-12-12 09:33:07 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\PackageAware
2010-12-12 09:26:45 -------- d-----w- c:\program files\common files\Wise Installation Wizard
2010-12-12 08:52:46 -------- d-----w- c:\program files\MSXML 4.0
2010-12-12 08:51:22 -------- d-----w- c:\docume~1\alluse~1\applic~1\Nero
2010-12-12 08:50:25 -------- d--h--w- c:\windows\$hf_mig$
2010-12-11 21:42:20 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\GHISLER
2010-12-11 20:47:57 545 ----a-w- c:\windows\UC.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\RAR.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\PKZIP.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\PKUNZIP.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\LHA.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\ARJ.PIF
2010-12-11 20:47:57 -------- d-----w- C:\totalcmd
2010-12-11 20:47:57 -------- d-----w- c:\docume~1\jevta\applic~1\GHISLER
2010-12-11 20:39:07 -------- d-----w- c:\program files\uTorrent
2010-12-11 20:37:57 -------- d-----w- c:\docume~1\jevta\applic~1\uTorrent
2010-12-11 20:36:12 -------- d-----w- c:\program files\Solveig Multimedia
2010-12-11 20:36:12 -------- d-----w- c:\program files\common files\Solveig Multimedia
2010-12-11 20:30:24 -------- d-----w- c:\program files\avisplit
==================== Find3M ====================
2010-12-12 11:08:43 44 ----a-w- c:\windows\system32\msssc.dll
2010-11-18 18:12:44 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-17 21:10:37 3056008 ----a-w- c:\windows\askToolbarInstaller.exe
2010-11-06 00:34:04 841216 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:34:04 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:34:03 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:34:03 17408 ----a-w- c:\windows\system32\corpol.dll
2010-11-03 12:00:49 389120 ----a-w- c:\windows\system32\html.iec
2010-10-28 13:08:53 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:27:10 1862272 ----a-w- c:\windows\system32\win32k.sys
============= FINISH: 23:11:47.78 ===============
mycity.rs/must-login.png
Dopuna: 20 Dec 2010 23:40
Problem je opisan na topiku: mycity.rs/Storage-hardware/Poludeli-CD-ROM.html
U medjuvremenu se desila još jedna čudna stvar. Naime, posle DDS_a startovao sam i GMER, medjutim možda zato što sam hteo da koristim browser dok on radi računar se zakočio pa sam ga restartovao na dugme i čik pogodite šta se desilo? Naravno, pogadjate i sami: CD-ROM je divljao čak i pre no što se windows učitao.
|
|
|
|
|
Poslao: 21 Dec 2010 21:58
|
offline
- d_one
- Novi MyCity građanin
- Pridružio: 02 Maj 2010
- Poruke: 15
|
Napisano: 21 Dec 2010 0:11
Gmer kod mene ne radi (probao 2 puta), a sad mi je kasno za RootRepeal. Sutra.
Dopuna: 21 Dec 2010 0:13
Za divno čudo Mad LG trenutno spava.
Dopuna: 21 Dec 2010 21:58
Pisao sam već na originalnom topikuda večeras CD radi normalno (osim što nisam uspeo da ga otvorim na dugme već uz pomoć VLC playera).
|
|
|
|
Poslao: 21 Dec 2010 22:10
|
offline
- 1l padr1n0
- Anti Malware Fighter
Rank 2
- Pridružio: 02 Feb 2008
- Poruke: 14018
- Gde živiš: Nish
|
Napisao sam sta je jos potrebno da uradis u mojoj prethodnoj poruci, ukoliko zelis da sa sigurnoscu potvrdim da problem nije prouzrokovan malware-om.
goran9888 (AMF Tim)
|
|
|
|
|
|
|