Poludeli CD-ROM

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 20 Dec 2010 23:17

Ako nije problem ja bih nastavio ovde, a vi eventualno prebacite topik.

---------------------


DDS (Ver_10-12-12.02) - NTFSx86
Run by jevta at 23:08:54.20 on Mon 12/20/2010
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.256.27 [GMT 1:00]

AV: AVG Internet Security 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Firewall *Enabled*

============== Running Processes ===============

C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\AVG\AVG10\avgfws.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\AVG\AVG10\avgam.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\AVG\AVG10\avgemcx.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\SeaMonkey\seamonkey.exe
C:\Documents and Settings\jevta\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = [Link mogu videti samo ulogovani korisnici]
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
uURLSearchHooks: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
BHO: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
TB: Softonic-Eng7 Toolbar: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - c:\program files\softonic-eng7\tbSoft.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [Smapp] c:\program files\analog devices\soundmax\SMTray.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 10.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Corel Graphics Suite 1117] c:\program files\corel\corel graphics 11\register\registration.exe /title="Corel Graphics Suite 11" /date=010311 serial=
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

============= SERVICES / DRIVERS ===============

R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 25680]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 26064]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-9-7 249424]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 34384]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-11-9 299984]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-19 123472]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-19 30288]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2010-8-19 26192]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
S3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [2010-12-12 16472]
S3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [2010-12-12 11104]

=============== Created Last 30 ================

2010-12-20 20:44:19 -------- d-----w- c:\windows\system32\appmgmt
2010-12-19 12:35:40 -------- d-----w- c:\docume~1\jevta\applic~1\AVG10
2010-12-19 12:23:18 -------- d--h--w- c:\docume~1\alluse~1\applic~1\Common Files
2010-12-19 12:22:37 -------- d-----w- c:\docume~1\alluse~1\applic~1\AVG Security Toolbar
2010-12-19 12:12:38 -------- d-----w- c:\windows\system32\drivers\AVG
2010-12-19 12:12:38 -------- d-----w- c:\docume~1\alluse~1\applic~1\AVG10
2010-12-19 12:10:45 -------- d-----w- c:\program files\AVG
2010-12-19 11:59:20 -------- d-----w- c:\docume~1\alluse~1\applic~1\MFAData
2010-12-19 10:00:11 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2010-12-19 09:55:31 -------- d-----w- c:\windows\Corel
2010-12-19 09:54:00 -------- d-----w- c:\program files\common files\Corel
2010-12-19 09:52:08 -------- d-----w- c:\program files\Corel
2010-12-16 22:34:15 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Adobe
2010-12-12 18:31:07 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Identities
2010-12-12 18:25:17 725064 ----a-w- c:\windows\system32\pwNative.exe
2010-12-12 18:25:14 16472 ------w- c:\windows\system32\pwdrvio.sys
2010-12-12 18:25:14 11104 ------w- c:\windows\system32\pwdspio.sys
2010-12-12 18:25:00 -------- d-----w- c:\program files\MiniTool Partition Wizard Home Edition 5.2
2010-12-12 14:17:28 -------- d-----w- c:\program files\Yitsoft Software
2010-12-12 13:46:56 265728 -c----w- c:\windows\system32\dllcache\http.sys
2010-12-12 13:38:39 -------- d-----w- c:\program files\EASEUS
2010-12-12 11:24:15 13780 ------w- c:\windows\system32\drivers\pfc.sys
2010-12-12 11:23:30 -------- d-----w- C:\pdwork
2010-12-12 11:20:03 38160 ----a-w- c:\windows\system32\LMRTREND.dll
2010-12-12 11:20:03 182032 ----a-w- c:\windows\system32\dxtmsft3.dll
2010-12-12 11:20:03 140800 ----a-w- c:\windows\system32\tm20dec.ax
2010-12-12 11:19:57 63488 ----a-w- c:\windows\system32\unam4ie.exe
2010-12-12 11:19:52 5672 ----a-w- c:\windows\system32\quartz.vxd
2010-12-12 11:19:52 194320 ----a-w- c:\windows\system32\qcut.dll
2010-12-12 11:19:52 11776 ----a-w- c:\windows\system32\mciqtz.drv
2010-12-12 11:19:52 10240 ----a-w- c:\windows\system32\vidx16.dll
2010-12-12 11:19:49 4608 ----a-w- c:\windows\system32\w95inf32.dll
2010-12-12 11:19:49 2272 ----a-w- c:\windows\system32\w95inf16.dll
2010-12-12 11:18:02 306688 ----a-w- c:\windows\IsUninst.exe
2010-12-12 11:08:51 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2010-12-12 11:07:41 5824 ----a-w- c:\windows\system32\drivers\ASUSHWIO.SYS
2010-12-12 11:03:35 8703 ------r- c:\windows\system32\drivers\EIO.sys
2010-12-12 10:58:21 4122368 ----a-r- c:\windows\system32\drivers\ALCXWDM.SYS
2010-12-12 10:58:20 4096 -c--a-w- c:\windows\system32\dllcache\ksuser.dll
2010-12-12 10:58:20 4096 ----a-w- c:\windows\system32\ksuser.dll
2010-12-12 10:58:20 129536 ----a-w- c:\windows\system32\ksproxy.ax
2010-12-12 10:58:18 146048 -c--a-w- c:\windows\system32\dllcache\portcls.sys
2010-12-12 10:58:18 146048 ----a-w- c:\windows\system32\drivers\portcls.sys
2010-12-12 10:58:16 60160 -c--a-w- c:\windows\system32\dllcache\drmk.sys
2010-12-12 10:58:16 60160 ----a-w- c:\windows\system32\drivers\drmk.sys
2010-12-12 10:36:20 26 ----a-w- c:\windows\WINSTART.BAT
2010-12-12 10:36:20 123 ----a-w- c:\windows\TMPCPYIS.BAT
2010-12-12 10:36:20 122 ----a-w- c:\windows\TMPDELIS.BAT
2010-12-12 10:35:59 24 ----a-w- c:\windows\DOSSTART.BAT
2010-12-12 10:35:41 -------- d-----w- C:\OPTI931
2010-12-12 10:35:01 -------- d-----w- c:\documents and settings\jevta\WINDOWS
2010-12-12 10:12:10 -------- d-----w- c:\program files\VideoLAN
2010-12-12 10:04:10 -------- d-----w- c:\docume~1\alluse~1\applic~1\PC Drivers HeadQuarters
2010-12-12 09:56:24 -------- d-----w- c:\docume~1\jevta\applic~1\UseNeXT
2010-12-12 09:56:09 -------- d-----w- c:\program files\UseNeXT
2010-12-12 09:37:36 -------- d-----w- c:\program files\Conduit
2010-12-12 09:37:36 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Conduit
2010-12-12 09:37:35 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Softonic-Eng7
2010-12-12 09:37:33 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\ConduitEngine
2010-12-12 09:37:32 -------- d-----w- c:\program files\ConduitEngine
2010-12-12 09:37:30 -------- d-----w- c:\program files\Softonic-Eng7
2010-12-12 09:37:30 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\Temp
2010-12-12 09:37:08 -------- d-----w- c:\windows\Logs
2010-12-12 09:33:26 -------- dc-h--w- c:\docume~1\alluse~1\applic~1\{45851E8A-52E0-42AF-8863-E2A92D63A514}
2010-12-12 09:33:25 -------- d-----w- c:\program files\SmartTweak Software
2010-12-12 09:33:07 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\PackageAware
2010-12-12 09:26:45 -------- d-----w- c:\program files\common files\Wise Installation Wizard
2010-12-12 08:52:46 -------- d-----w- c:\program files\MSXML 4.0
2010-12-12 08:51:22 -------- d-----w- c:\docume~1\alluse~1\applic~1\Nero
2010-12-12 08:50:25 -------- d--h--w- c:\windows\$hf_mig$
2010-12-11 21:42:20 -------- d-----w- c:\docume~1\jevta\locals~1\applic~1\GHISLER
2010-12-11 20:47:57 545 ----a-w- c:\windows\UC.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\RAR.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\PKZIP.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\PKUNZIP.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\LHA.PIF
2010-12-11 20:47:57 545 ----a-w- c:\windows\ARJ.PIF
2010-12-11 20:47:57 -------- d-----w- C:\totalcmd
2010-12-11 20:47:57 -------- d-----w- c:\docume~1\jevta\applic~1\GHISLER
2010-12-11 20:39:07 -------- d-----w- c:\program files\uTorrent
2010-12-11 20:37:57 -------- d-----w- c:\docume~1\jevta\applic~1\uTorrent
2010-12-11 20:36:12 -------- d-----w- c:\program files\Solveig Multimedia
2010-12-11 20:36:12 -------- d-----w- c:\program files\common files\Solveig Multimedia
2010-12-11 20:30:24 -------- d-----w- c:\program files\avisplit

==================== Find3M ====================

2010-12-12 11:08:43 44 ----a-w- c:\windows\system32\msssc.dll
2010-11-18 18:12:44 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-17 21:10:37 3056008 ----a-w- c:\windows\askToolbarInstaller.exe
2010-11-06 00:34:04 841216 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:34:04 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:34:03 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:34:03 17408 ----a-w- c:\windows\system32\corpol.dll
2010-11-03 12:00:49 389120 ----a-w- c:\windows\system32\html.iec
2010-10-28 13:08:53 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:27:10 1862272 ----a-w- c:\windows\system32\win32k.sys

============= FINISH: 23:11:47.78 ===============

[Link mogu videti samo ulogovani korisnici]

Dopuna: 20 Dec 2010 23:40

Problem je opisan na topiku: [Link mogu videti samo ulogovani korisnici]

U medjuvremenu se desila još jedna čudna stvar. Naime, posle DDS_a startovao sam i GMER, medjutim možda zato što sam hteo da koristim browser dok on radi računar se zakočio pa sam ga restartovao na dugme i čik pogodite šta se desilo? Naravno, pogadjate i sami: CD-ROM je divljao čak i pre no što se windows učitao.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav, d_one!








Potrebno je da postavis i GMER log-ove ili RootRepeal log (u slucaju da GMER ne radi).

[Link mogu videti samo ulogovani korisnici]





goran9888 (AMF Tim)

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 21 Dec 2010 0:11

Gmer kod mene ne radi (probao 2 puta), a sad mi je kasno za RootRepeal. Sutra.

Dopuna: 21 Dec 2010 0:13

Za divno čudo Mad LG trenutno spava.

Dopuna: 21 Dec 2010 21:58

Pisao sam već na originalnom topikuda večeras CD radi normalno (osim što nisam uspeo da ga otvorim na dugme već uz pomoć VLC playera).

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisao sam sta je jos potrebno da uradis u mojoj prethodnoj poruci, ukoliko zelis da sa sigurnoscu potvrdim da problem nije prouzrokovan malware-om.












goran9888 (AMF Tim)

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Da, znam, video sam.
[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Problem sa CD-ROM-om nije prouzrokovan malware-om jer su log-ovi koje si postavio cisti.




Nastavi resavanje tvog problema u potforumu Storage (memorija,hdd,cd,dvd,usb flash) gde si prvobitno i otvorio temu.





Hvala sto verujes AMF Timu







Pozdrav,
goran9888 (AMF Tim)

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Hvala vama na pomoći.