potencijalni problem ili ne

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 23 Feb 2011 19:06

e ovako: u poslednje vreme mi kompjuter (nekad odmah posle startovanja, a nekad kasnije) uspori ... sve dok potpuno ne zablokira i ja ga moram iskljuciti, jer ne mogu ni restart.

imam nod32 i malwareb. (ovaj je iskljucen), a nod je bio pokusaj deinstaliranja i novu verziju instaliranja, medjutim nije uspelo. uvek se pri pokusaju javi problem s nekim fajlom.

cak ni sa programima unistall nije uspesan pokusaj da se obrise folder eset, tamo gde je instaliran.

ne znam u cemu je problem ili je virus ili nesto nije u redu sa windowsom.


evo dds fajlovi a sad cu ukljuciti gmer da skenira.

Dopuna: 23 Feb 2011 19:07

DDS (Ver_10-12-12.02) - NTFSx86
Run by Miki at 18:59:11,26 on 23.02.2011
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.43.1031.18.1790.976 [GMT 1:00]

AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Launch Manager\LaunchAp.exe
C:\Programme\Launch Manager\HotkeyApp.exe
C:\Programme\Launch Manager\OSD.exe
C:\Programme\Launch Manager\OSDCtrl.exe
C:\Programme\Launch Manager\Wbutton.exe
C:\Programme\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
svchost.exe
svchost.exe
C:\Programme\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Programme\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\LckFldService.exe
C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Programme\ATI Technologies\ATI.ACE\cli.exe
C:\Programme\ATI Technologies\ATI.ACE\cli.exe
C:\Programme\uTorrent\uTorrent.exe
C:\Programme\GRETECH\GomPlayer\GOM.exe
C:\Programme\Opera\Opera.exe
C:\Programme\Schweser2011\Level1\SchweserPro.exe
C:\Programme\Schweser2011\Level1\app\apache\apache.exe
C:\Dokumente und Einstellungen\Miki\Desktop\procexp.exe
C:\Dokumente und Einstellungen\Miki\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = [Link mogu videti samo ulogovani korisnici]
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - c:\programme\utorrentbar\tbuTo0.dll
mWinlogon: Userinit=c:\windows\system32\userinit.exe,c:\programme\soluto\soluto.exe /userinit
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\programme\conduitengine\ConduitEngin1.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office14\GROOVEEX.DLL
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~2\office14\URLREDIR.DLL
BHO: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - c:\programme\utorrentbar\tbuTo0.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\programme\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\programme\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - c:\programme\utorrentbar\tbuTo0.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\programme\conduitengine\ConduitEngin1.dll
{555d4d79-4bd2-4094-a395-cfc534424a05}
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [LaunchAp] c:\programme\launch manager\LaunchAp.exe
mRun: [HotkeyApp] c:\programme\launch manager\HotkeyApp.exe
mRun: [LMgrVolOSD] c:\programme\launch manager\OSD.exe
mRun: [LMgrOSD] c:\programme\launch manager\OSDCtrl.exe
mRun: [Wbutton] "c:\programme\launch manager\Wbutton.exe"
mRun: [CtrlVol] c:\programme\launch manager\CtrlVol.exe
mRun: [ATICCC] "c:\programme\ati technologies\ati.ace\cli.exe" runtime -Delay
mRun: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
mRun: [SunJavaUpdateSched] "c:\programme\gemeinsame dateien\java\java update\jusched.exe"
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
IE: An OneNote s&enden - /105
IE: Nach Microsoft E&xel exportieren - c:\progra~1\micros~2\office14\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\programme\microsoft office\office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\programme\microsoft office\office14\ONBttnIELinkedNotes.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - [Link mogu videti samo ulogovani korisnici]
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - [Link mogu videti samo ulogovani korisnici]
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - [Link mogu videti samo ulogovani korisnici]
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - [Link mogu videti samo ulogovani korisnici]
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - [Link mogu videti samo ulogovani korisnici]
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [Link mogu videti samo ulogovani korisnici]
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\gemein~1\skype\SKYPE4~1.DLL
Handler: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - c:\programme\vshare\vshare_toolbar.dll
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office14\GROOVEEX.DLL

============= SERVICES / DRIVERS ===============

R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2010-4-28 114984]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2010-6-24 95896]
R2 ekrn;ESET Service;c:\programme\eset\eset nod32 antivirus\ekrn.exe [2010-6-24 810144]
R2 MBAMService;MBAMService;c:\programme\malwarebytes' anti-malware\mbamservice.exe [2010-12-1 363344]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-12-1 20952]
S1 mailKmd;mailKmd; [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 KMService;KMService;c:\windows\system32\srvany.exe [2010-11-19 8192]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2010-1-2 1691480]
S3 flash;flash;c:\windows\system32\drivers\flash.sys [2010-1-2 8064]
S3 Ltn_stk7070P;PCTV based TV tuner device;c:\windows\system32\drivers\Ltn_stk7070P.sys [2010-1-3 466048]
S3 Ltn_stkrc;PCTV Infrared Receiver;c:\windows\system32\drivers\Ltn_stkrc.sys [2010-1-3 13440]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\programme\microsoft office\office14\GROOVE.EXE [2010-1-21 30963576]
S3 PRODIGY;PRODIGY;c:\windows\system32\drivers\prodigy.sys [2010-5-16 32377]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 osppsvc;Office Software Protection Platform;c:\programme\gemeinsame dateien\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000]

=============== Created Last 30 ================

2011-02-21 21:20:52 -------- d-----w- c:\dokume~1\miki\anwend~1\URSoft
2011-02-21 21:20:02 -------- d-----w- c:\programme\Your Uninstaller! 2010
2011-02-16 21:15:05 -------- d-----w- c:\programme\iPod
2011-02-16 20:46:57 -------- d-----w- c:\dokume~1\miki\lokale~1\anwend~1\VS Revo Group
2011-02-16 19:30:34 -------- d-----w- c:\programme\VitalSource Bookshelf
2011-02-12 07:20:34 440832 -c----w- c:\windows\system32\dllcache\shimgvw.dll
2011-02-05 10:10:43 -------- d-----w- c:\dokumente und einstellungen\miki\.thumbnails
2011-01-26 19:09:25 -------- d-----w- c:\dokumente und einstellungen\miki\.gimp-2.6
2011-01-26 19:08:31 -------- d-----w- c:\programme\GIMP-2.0

==================== Find3M ====================

2011-02-02 20:40:23 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-02-02 18:19:39 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-01-21 14:44:10 440832 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09:02 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-12-31 14:03:39 1855104 ----a-w- c:\windows\system32\win32k.sys
2010-12-22 12:34:16 301568 ----a-w- c:\windows\system32\kerberos.dll
2010-12-20 23:52:29 916480 ----a-w- c:\windows\system32\wininet.dll
2010-12-20 23:52:28 43520 ----a-w- c:\windows\system32\licmgr10.dll
2010-12-20 23:52:28 1469440 ------w- c:\windows\system32\inetcpl.cpl
2010-12-20 17:25:50 737792 ----a-w- c:\windows\system32\lsasrv.dll
2010-12-20 12:55:26 385024 ----a-w- c:\windows\system32\html.iec
2010-12-09 15:15:07 743936 ----a-w- c:\windows\system32\ntdll.dll
2010-12-09 15:13:59 2195072 ------w- c:\windows\system32\ntoskrnl.exe
2010-12-09 15:13:53 2071680 ------w- c:\windows\system32\ntkrnlpa.exe
2010-12-09 14:29:52 33280 ----a-w- c:\windows\system32\csrsrv.dll
2010-11-29 16:38:30 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38:30 69632 ----a-w- c:\windows\system32\QuickTime.qts

============= FINISH: 19:00:41,15 ===============

Dopuna: 23 Feb 2011 19:10

[Link mogu videti samo ulogovani korisnici]


i jos nesto: tamo gde su instalirani programi nema uopste nod32 kao da je deinstaliran

Dopuna: 23 Feb 2011 20:03

evo u toku skeniranja gmer-a opet mi je zablokirao kompjuter i opet--iskljuciti i ponovo ukljuciti
evo gmer log:
[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

[Link mogu videti samo ulogovani korisnici]

Dopuna: 23 Feb 2011 20:06

a evo jos da dodam, konkretno kad pokusam reinstalaciju nod-a javi se problem s ovim fajlom: msvcp80.dll


i

Dopuna: 24 Feb 2011 10:17

jel nesto nije u redu ili?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

[Link mogu videti samo ulogovani korisnici]

Da li si ovim alatom pokusao da deinstaliras Nod? Ako nisi, odradi sa njim pa javi rezultat.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

a da li ce ovo resiti problem usporavanja i zamrzavanja windows-a?

inace, uradih ovo i obrisah eset. konacno.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Najverovatnije je neki drugi problem u pitanju, ja ne nadjoh malware-e u logovima, znaci cist si.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

e s****

da je virus, bilo bi bolje .. ovako moram serach dalje u cemu je problem

hvala na pomoci anyway