Ajang diskusi malware di Indonesia & reverse code engineering.
You are not logged in. Please login or register.
Gan gua pengguna baru ne..
mau tanya, bagai mana menampilkan "scan with clamav's engine" ..
soal nya d pcmav 5 saya hanya ada 5 scan option nya yang ke 6
(scan with clamav's engine), sperti gambar diatas gax ada...
mohon pencerahan nya
pastikan clamav sudah menyatu dgn pcmav, coba cek kembali folder plugins\clamav
pastikan clamav sudah menyatu dgn pcmav, coba cek kembali folder plugins\clamav
Gua pengguna avast! Free 6 bro...
eerrr, mungkin bisa ditampilin skrinsut nya atau penjelasan lebih detil, saya kurang paham dgn penjelasan pertama anda (maaf saya lemot)
@aditya
sorry, anda menanyakan bagaimana cara menampilkan scan with clamav, dan kemudian anda berkata anda adalah pengguna Avast Free v6. Scan with Clamav bisa digunakan jika anda menginstall clamav, atau Clamav terintegrasi dengan PCMAV [cmiiw]
Nemu kaya gini tiap kali nyalain laptop. Gak ngerti pasti bareng pcmav valhalla. 
date/time : 2011-05-01, 22:37:52, 224ms
computer name : AWEDCOMP
user name : User <admin>
registered owner : Dewangga Fatah / AWEDcomP
operating system : Windows 7 Service Pack 1 build 7601
system language : Indonesian
system up time : 12 minutes 3 seconds
program up time : 3 minutes 19 seconds
processors : 4x Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz
physical memory : 614/1900 MB (free/total)
free disk space : (C:) 30,68 GB
display mode : 1366x768, 32 bit
process id : $fc8
allocated memory : 156,12 MB
command line : "C:\Program Files\P3CM4V\PCMAV.exe" /RTP
executable : PCMAV.exe
exec. date/time : 2011-02-22 09:39
version : 5.0.0.0
compiled with : Delphi 2006/07
madExcept version : 3.0m beta 1
PCMAV.exe.mad : $000260e0, $14f23e56, $a75feb77
callstack crc : $c326d369, $4cb1f8bb, $4cb1f8bb
exception number : 1
exception class : EInvalidOperation
exception message : Cannot change Visible in OnShow or OnHide.
main thread ($600):
004c0369 +055 PCMAV.exe segment%58 public%5854
004a6b63 +2bb PCMAV.exe segment%54 public%4991
004aab5a +4fa PCMAV.exe segment%54 public%5138
004bca4b +553 PCMAV.exe segment%58 public%5750
004a67f0 +024 PCMAV.exe segment%54 public%4987
004aa022 +112 PCMAV.exe segment%54 public%5130
004aa165 +0e5 PCMAV.exe segment%54 public%5131
004ac9ea +026 PCMAV.exe segment%54 public%5224
004a6b63 +2bb PCMAV.exe segment%54 public%4991
004aab5a +4fa PCMAV.exe segment%54 public%5138
004bca4b +553 PCMAV.exe segment%58 public%5750
004a67f0 +024 PCMAV.exe segment%54 public%4987
004a53f2 +026 PCMAV.exe segment%54 public%4913
004bc382 +03a PCMAV.exe segment%58 public%5745
004c0c3a +002 PCMAV.exe segment%58 public%5864
006119b9 +065 PCMAV.exe segment%268 public%12293
004c0b91 +055 PCMAV.exe segment%58 public%5862
004c0ab9 +021 PCMAV.exe segment%58 public%5861
004bfae8 +000 PCMAV.exe segment%58 public%5835
004a6b63 +2bb PCMAV.exe segment%54 public%4991
004aab5a +4fa PCMAV.exe segment%54 public%5138
004bca4b +553 PCMAV.exe segment%58 public%5750
004aa284 +02c PCMAV.exe segment%54 public%5133
00475ee8 +014 PCMAV.exe segment%31 public%3532
75a12e3c +00a USER32.dll DispatchMessageA
004c4810 +0fc PCMAV.exe segment%58 public%6000
004c4832 +00a PCMAV.exe segment%58 public%6001
0060f1aa +222 PCMAV.exe segment%268 public%12278
0060f889 +0fd PCMAV.exe segment%268 public%12280
004bf173 +027 PCMAV.exe segment%58 public%5813
004c0240 +010 PCMAV.exe segment%58 public%5851
004a6b63 +2bb PCMAV.exe segment%54 public%4991
004aab5a +4fa PCMAV.exe segment%54 public%5138
004bca4b +553 PCMAV.exe segment%58 public%5750
004aa284 +02c PCMAV.exe segment%54 public%5133
00475ee8 +014 PCMAV.exe segment%31 public%3532
75a0ada4 +044 USER32.dll SendMessageA
004b99cc +010 PCMAV.exe segment%58 public%5645
004bedb2 +12e PCMAV.exe segment%58 public%5806
004aa7c1 +161 PCMAV.exe segment%54 public%5138
0048c424 +06c PCMAV.exe segment%43 public%4230
004aa284 +02c PCMAV.exe segment%54 public%5133
00475ee8 +014 PCMAV.exe segment%31 public%3532
76f86feb +02b ntdll.dll KiUserCallbackDispatcher
004a6b63 +2bb PCMAV.exe segment%54 public%4991
004aab5a +4fa PCMAV.exe segment%54 public%5138
004bca4b +553 PCMAV.exe segment%58 public%5750
004aa284 +02c PCMAV.exe segment%54 public%5133
00475ee8 +014 PCMAV.exe segment%31 public%3532
76f86feb +02b ntdll.dll KiUserCallbackDispatcher
004a6b63 +2bb PCMAV.exe segment%54 public%4991
004aab5a +4fa PCMAV.exe segment%54 public%5138
004bca4b +553 PCMAV.exe segment%58 public%5750
004a67f0 +024 PCMAV.exe segment%54 public%4987
004aa022 +112 PCMAV.exe segment%54 public%5130
004aa165 +0e5 PCMAV.exe segment%54 public%5131
004ac9ea +026 PCMAV.exe segment%54 public%5224
004a6b63 +2bb PCMAV.exe segment%54 public%4991
004bb695 +031 PCMAV.exe segment%58 public%5714
004bb2ed +011 PCMAV.exe segment%58 public%5710
00404b55 +01d PCMAV.exe segment%0 public%214
004bb2c4 +174 PCMAV.exe segment%58 public%5709
004a67f0 +024 PCMAV.exe segment%54 public%4987
004a53f2 +026 PCMAV.exe segment%54 public%4913
004bc382 +03a PCMAV.exe segment%58 public%5745
004c4b45 +09d PCMAV.exe segment%58 public%6007
00684280 +1dc PCMAV.exe segment%417 public%13118
75433c43 +010 kernel32.dll BaseThreadInitThunk
thread $a60 (TgtTimerThread):
76f86a22 +0a ntdll.dll NtWaitForSingleObject
75251796 +66 KERNELBASE.dll WaitForSingleObjectEx
7542baee +3e kernel32.dll WaitForSingleObjectEx
7542ba9d +0d kernel32.dll WaitForSingleObject
005d536c +10 PCMAV.exe segment%221 public%11307
00452c7b +2b PCMAV.exe segment%23 public%2341
00474774 +34 PCMAV.exe segment%31 public%3425
004056f4 +28 PCMAV.exe segment%0 public%250
00452b5d +0d PCMAV.exe segment%23 public%2339
00452bc7 +37 PCMAV.exe segment%23 public%2340
75433c43 +10 kernel32.dll BaseThreadInitThunk
>> created by main thread ($600) at:
005d52f3 +1b PCMAV.exe segment%221 public%11304
thread $1068 (TWndProc): <suspended>
00614e03 +1f PCMAV.exe segment%274 public%12335
thread $11c0:
76f86a02 +0a ntdll.dll NtWaitForMultipleObjects
75433c43 +10 kernel32.dll BaseThreadInitThunk
thread $1260:
76f86422 +00a ntdll.dll NtReplyWaitReceivePort
00546508 +030 PCMAV.exe segment%105 public%8432
00452b5d +00d PCMAV.exe segment%23 public%2339
00452bc7 +037 PCMAV.exe segment%23 public%2340
75433c43 +010 kernel32.dll BaseThreadInitThunk
>> created by thread $125c at:
005469d3 +263 PCMAV.exe segment%105 public%8433
thread $1264: <priority:1>
76f86a22 +00a ntdll.dll NtWaitForSingleObject
75251796 +066 KERNELBASE.dll WaitForSingleObjectEx
7542baee +03e kernel32.dll WaitForSingleObjectEx
7542ba9d +00d kernel32.dll WaitForSingleObject
0054618a +012 PCMAV.exe segment%105 public%8431
00452b5d +00d PCMAV.exe segment%23 public%2339
00452bc7 +037 PCMAV.exe segment%23 public%2340
75433c43 +010 kernel32.dll BaseThreadInitThunk
>> created by thread $125c at:
005469f4 +284 PCMAV.exe segment%105 public%8433
thread $13c0 (TgtTimerThread):
76f86a22 +0a ntdll.dll NtWaitForSingleObject
75251796 +66 KERNELBASE.dll WaitForSingleObjectEx
7542baee +3e kernel32.dll WaitForSingleObjectEx
7542ba9d +0d kernel32.dll WaitForSingleObject
005d536c +10 PCMAV.exe segment%221 public%11307
00452c7b +2b PCMAV.exe segment%23 public%2341
00474774 +34 PCMAV.exe segment%31 public%3425
004056f4 +28 PCMAV.exe segment%0 public%250
00452b5d +0d PCMAV.exe segment%23 public%2339
00452bc7 +37 PCMAV.exe segment%23 public%2340
75433c43 +10 kernel32.dll BaseThreadInitThunk
>> created by main thread ($600) at:
005d52f3 +1b PCMAV.exe segment%221 public%11304
thread $16c0:
76f86922 +0a ntdll.dll NtTraceControl
76f5f500 +40 ntdll.dll EtwpNotificationThread
75433c43 +10 kernel32.dll BaseThreadInitThunk
processes:
0000 Idle 0 0 0
0004 System 0 0 0
015c smss.exe 0 0 0 normal C:\Windows\system32
01d8 csrss.exe 0 0 0 normal C:\Windows\system32
0238 wininit.exe 0 0 0 high C:\Windows\system32
0240 csrss.exe 1 174 81 normal C:\Windows\system32
0270 winlogon.exe 1 6 0 high C:\Windows\system32
029c services.exe 0 0 0 normal C:\Windows\system32
02ac lsass.exe 0 0 0 normal C:\Windows\system32
02b4 lsm.exe 0 0 0 normal C:\Windows\system32
0334 svchost.exe 0 0 0 normal C:\Windows\system32
0394 USBSRService.exe 0 0 0 normal C:\Program Files\USB Safely Remove
03b4 nvvsvc.exe 0 0 0 normal C:\Windows\system32
03dc svchost.exe 0 0 0 normal C:\Windows\system32
0410 MsMpEng.exe 0 0 0 normal C:\Program Files\Microsoft Security Client\Antimalware
046c svchost.exe 0 0 0 normal C:\Windows\System32
049c svchost.exe 0 0 0 normal C:\Windows\System32
04c4 svchost.exe 0 0 0 normal C:\Windows\system32
057c TrustedInstaller.exe 0 0 0 normal C:\Windows\servicing
0638 svchost.exe 0 0 0 normal C:\Windows\system32
06b8 FBAgent.exe 0 0 0 normal C:\Windows\system32
06d0 WLANExt.exe 0 0 0 normal C:\Windows\system32
06e8 conhost.exe 0 0 0 normal C:\Windows\system32
06f0 ASLDRSrv.exe 0 0 0 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
0710 GFNEXSrv.exe 0 0 0 normal C:\Program Files\ASUS\ATK Package\ATKGFNEX
0784 spoolsv.exe 0 0 0 normal C:\Windows\System32
07ac sched.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
01ec svchost.exe 0 0 0 normal C:\Windows\system32
030c svchost.exe 0 0 0 normal C:\Windows\System32
0448 AntiARPClientLoader.exe 0 0 0 normal C:\Program Files\ColorSoft\AntiARP
0618 avfwsvc.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0598 avguard.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0814 ApplicationUpdater.exe 0 0 0 normal C:\Program Files\Application Updater
0828 mDNSResponder.exe 0 0 0 normal C:\Program Files\Bonjour
083c btwdins.exe 0 0 0 normal C:\Program Files\WIDCOMM\Bluetooth Software
08a0 LMS.exe 0 0 0 normal C:\Program Files\Intel\Intel(R) Management Engine Components\LMS
08c0 NitroPDFDriverService.exe 0 0 0 normal C:\Program Files\Nitro PDF\Professional
08f8 NLSSRV32.EXE 0 0 0 normal C:\Windows\system32
0914 SeaPort.EXE 0 0 0 normal C:\Program Files\Microsoft\BingBar
098c avshadow.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0994 conhost.exe 0 0 0 normal C:\Windows\system32
09bc TuneUpUtilitiesService32.exe 0 0 0 normal C:\Program Files\TuneUp Utilities 2011
0a08 WLIDSVC.EXE 0 0 0 normal C:\Program Files\Common Files\Microsoft Shared\Windows Live
0a30 Facewinks.exe 0 0 0 normal C:\Program Files\Facewinks
0a84 WLIDSvcM.exe 0 0 0 normal C:\Program Files\Common Files\Microsoft Shared\Windows Live
0bcc avmailc.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0c30 AVWEBGRD.EXE 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0d50 svchost.exe 0 0 0 normal C:\Windows\system32
0edc NisSrv.exe 0 0 0 normal C:\Program Files\Microsoft Security Client\Antimalware
0164 svchost.exe 0 0 0 normal C:\Windows\system32
0fd4 svchost.exe 0 0 0 normal C:\Windows\system32
0cf8 GoogleUpdate.exe 0 0 0 normal C:\Program Files\Google\Update
0b8c NASvc.exe 0 0 0 normal C:\Program Files\Nero\Update
0318 UNS.exe 0 0 0 normal C:\Program Files\Intel\Intel(R) Management Engine Components\UNS
0ce4 NvXDSync.exe 1 9 9 normal C:\Program Files\NVIDIA Corporation\Display
0c78 nvvsvc.exe 1 19 9 normal C:\Windows\system32
0fe0 wmiprvse.exe 0 0 0 normal C:\Windows\system32\wbem
0fdc wmiprvse.exe 0 0 0 normal C:\Windows\system32\wbem
0e7c taskhost.exe 1 32 31 normal C:\Windows\system32
0dd8 taskeng.exe 1 10 3 normal C:\Windows\system32
0dd4 TuneUpUtilitiesApp32.exe 1 216 97 normal C:\Program Files\TuneUp Utilities 2011
09ac Dwm.exe 1 15 2 high C:\Windows\system32
0d18 ACMON.exe 1 14 8 below normal C:\Program Files\ASUS\Splendid
0e88 taskhost.exe 1 12 6 normal C:\Windows\system32
0fb4 ControlDeckStartUp.exe 1 9 3 below normal C:\Program Files\ASUS\ControlDeck
0e24 ALU.exe 1 16 12 below normal C:\Program Files\ASUS\ASUS Live Update
08f4 wcourier.exe 1 18 14 below normal C:\Program Files\ASUS\Wireless Console 3
05f4 BatteryLife.exe 1 15 6 below normal C:\Program Files\P4G
05d4 Explorer.EXE 1 417 238 normal C:\Windows
0fc8 PCMAV.exe 1 254 150 below normal C:\Program Files\P3CM4V
0f0c HControl.exe 1 14 10 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
0b74 ACEngSvr.exe 1 9 3 normal C:\Windows\System32
0718 ATKOSD.exe 1 157 5 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
084c WDC.exe 1 16 8 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
0ef0 taskeng.exe 1 9 3 normal C:\Windows\system32
1044 rundll32.exe 1 15 7 normal C:\Windows\System32
10fc audiodg.exe 0 0 0
1108 ATKOSD2.exe 1 22 14 normal C:\Program Files\ASUS\ATK Package\ATKOSD2
1154 DMedia.exe 1 13 6 normal C:\Program Files\ASUS\ATK Package\ATK Media
116c HControlUser.exe 1 15 5 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
1198 msseces.exe 1 143 60 normal C:\Program Files\Microsoft Security Client
11b0 Panda_URL_Filtering.exe 1 4 2 normal C:\ProgramData\Panda Security URL Filtering
11d4 avgnt.exe 1 95 24 normal C:\Program Files\Avira\AntiVir Desktop
1310 wuauclt.exe 1 12 5 normal C:\Windows\system32
131c RtHDVCpl.exe 1 54 22 normal C:\Program Files\Realtek\Audio\HDA
153c mylbx.exe 1 165 66 normal C:\Program Files\My Lockbox
1570 igfxtray.exe 1 12 5 normal C:\Windows\System32
15b4 hkcmd.exe 1 10 16 normal C:\Windows\System32
15e0 igfxpers.exe 1 9 4 normal C:\Windows\System32
1794 IDMan.exe 1 105 66 normal C:\Program Files\Internet Download Manager
0214 USBSafelyRemove.exe 1 370 79 normal C:\Program Files\USB Safely Remove
1190 SRSPremiumPanel.exe 1 94 19 normal C:\Program Files\SRS Labs\SRS Premium Sound Control Panel
1444 IEMonitor.exe 1 18 16 normal C:\Program Files\Internet Download Manager
16ec Connectifyd.exe 0 0 0 normal C:\Program Files\Connectify
1150 RTPSvc.exe 0 0 0 normal C:\Windows\system32
1234 RichVideo.exe 0 0 0 normal C:\Program Files\CyberLink\Shared Files
cpu registers:
eax = 036f1e40
ebx = 0012ebb8
ecx = 036f1e40
edx = 004c0369
esi = 023127f0
edi = 023127f0
eip = 004c0369
esp = 0012e9c8
ebp = 0012ea18
stack dump:
0012e9c8 69 03 4c 00 de fa ed 0e - 01 00 00 00 07 00 00 00 i.L.............
0012e9d8 dc e9 12 00 69 03 4c 00 - 40 1e 6f 03 b8 eb 12 00 ....i.L.@.o.....
0012e9e8 f0 27 31 02 f0 27 31 02 - 18 ea 12 00 f8 e9 12 00 .'1..'1.........
0012e9f8 d4 eb 12 00 d0 4f 40 00 - 18 ea 12 00 f0 27 31 02 .....O@......'1.
0012ea08 f0 27 31 02 b8 eb 12 00 - 00 00 00 00 f0 27 31 02 .'1..........'1.
0012ea18 44 eb 12 00 66 6b 4a 00 - f0 27 31 02 00 00 00 00 D...fkJ..'1.....
0012ea28 b8 eb 12 00 00 00 00 00 - 00 00 00 00 08 00 00 00 ................
0012ea38 00 00 00 00 06 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012ea48 00 00 00 00 00 00 00 00 - 00 00 00 00 01 00 00 00 ................
0012ea58 16 00 00 00 00 00 00 00 - 00 00 00 00 1c 00 00 00 ................
0012ea68 11 00 00 00 0d 00 00 00 - 0d 00 00 00 4c 09 10 1a ............L...
0012ea78 86 04 85 01 30 09 10 13 - 00 00 00 00 17 00 00 00 ....0...........
0012ea88 0c 00 00 00 03 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012ea98 00 00 00 00 90 4c b7 01 - 28 4c b7 01 00 83 ff ff .....L..(L......
0012eaa8 00 83 ff ff 30 50 b7 01 - c4 ea 12 00 9b 9e bb 73 ....0P.........s
0012eab8 03 00 00 00 e0 ea 12 00 - 4c 4c b7 01 94 eb 12 00 ........LL......
0012eac8 2c 9e bb 73 4c 4c b7 01 - 37 9e bb 73 01 00 00 00 ,..sLL..7..s....
0012ead8 28 4c b7 01 00 00 00 00 - 00 00 01 00 01 00 02 00 (L..............
0012eae8 a0 00 00 00 1b 00 00 00 - 11 00 00 00 04 00 00 00 ................
0012eaf8 28 4c b7 01 58 ef a6 00 - 1c eb 12 00 7a 43 a1 75 (L..X.......zC.u
disassembling:
004c0314 public segment%58.public%5854 (PCMAV.exe): ; function entry point
004c0314 push ebp
004c0315 mov ebp, esp
004c0317 add esp, -8
004c031a push ebx
004c031b push esi
004c031c push edi
004c031d xor ecx, ecx
004c031f mov [ebp-8], ecx
004c0322 mov [ebp-4], eax
004c0325 xor eax, eax
004c0327 push ebp
004c0328 push $4c0970 ; segment%0.public%227 (PCMAV.exe)
004c032d push dword ptr fs:[eax]
004c0330 mov fs:[eax], esp
004c0333 mov eax, [ebp-4]
004c0336 test byte ptr [eax+$1c], $10
004c033a jnz loc_4c0369
004c033a
004c033c mov eax, [ebp-4]
004c033f test byte ptr [eax+$358], 4
004c0346 jz loc_4c0369
004c0346
004c0348 lea edx, [ebp-8]
004c034b mov eax, [$696270]
004c0350 call -$b8605 ($407d50) ; segment%0.public%388 (PCMAV.exe)
004c0350
004c0355 mov ecx, [ebp-8]
004c0358 mov dl, 1
004c035a mov eax, [$46840c]
004c035f call -$62c10 ($45d754) ; segment%26.public%2614 (PCMAV.exe)
004c035f
004c0364 call -$bb275 ($4050f4) ; segment%0.public%230 (PCMAV.exe)
004c0364
004c0369 loc_4c0369:
004c0369 > mov eax, [$69ceac]
004c036e call +$5309 ($4c567c) ; segment%58.public%6027 (PCMAV.exe)
004c036e
004c0373 mov eax, [ebp-4]
004c0376 or byte ptr [eax+$358], 4
004c037d xor edx, edx
004c037f push ebp
004c0380 push $4c0953 ; segment%0.public%227 (PCMAV.exe)
004c0385 push dword ptr fs:[edx]
004c0388 mov fs:[edx], esp
004c038b mov eax, [ebp-4]
004c038e test byte ptr [eax+$1c], $10
004c0392 jnz loc_4c090d
004c0392
004c0398 mov eax, [ebp-4]
004c039b cmp byte ptr [eax+$1da], 0
004c03a2 jz loc_4c0801
004c03a2
004c03a8 xor eax, eax
004c03aa push ebp
004c03ab push $4c03cc ; segment%0.public%225 (PCMAV.exe)
004c03b0 push dword ptr fs:[eax]
004c03b3 mov fs:[eax], esp
004c03b6 mov eax, [ebp-4]
004c03b9 mov si, $ffab
004c03bd call -$bba4a ($404978) ; segment%0.public%200 (PCMAV.exe)
004c03bd
004c03c2 xor eax, eax
004c03c4 pop edx
004c03c5 pop ecx
004c03c6 pop ecx
004c03c7 mov fs:[eax], edx
004c03ca jmp loc_4c03e3
004c03ca
004c03ca ; ---------------------------------------------------------
004c03ca
004c03cc jmp -$bb735 ($404c9c) ; segment%0.public%225 (PCMAV.exe)
004c03cc
004c03d1 mov edx, [ebp-4]
004c03d4 mov eax, [$69ceac]
004c03d9 call +$4842 ($4c4c20) ; segment%58.public%6010 (PCMAV.exe)
004c03d9
004c03de call -$bb273 ($405170) ; segment%0.public%232 (PCMAV.exe)
004c03de
004c03e3 loc_4c03e3:
004c03e3 mov eax, [ebp-4]
004c03e6 cmp byte ptr [eax+$278], 4
004c03ed jz loc_4c040f
004c03ed
004c03ef mov eax, [ebp-4]
004c03f2 cmp byte ptr [eax+$278], 6
004c03f9 jnz loc_4c04f2
004c03f9
004c03ff mov eax, [ebp-4]
004c0402 cmp byte ptr [eax+$277], 1
004c0409 jnz loc_4c04f2
004c0409
004c040f loc_4c040f:
004c040f mov eax, [ebp-4]
004c0412 cmp byte ptr [eax+$277], 1
004c0419 jnz loc_4c0455
004c0419
004c041b mov eax, [$69ceac]
004c0420 mov eax, [eax+$44]
004c0423 call -$1b610 ($4a4e18) ; segment%54.public%4897 (PCMAV.exe)
004c0423
004c0428 mov ebx, eax
004c042a mov eax, [ebp-4]
004c042d sub ebx, [eax+$48]
004c0430 sar ebx, 1
004c0432 jns loc_4c0437
004c0432
004c0434 adc ebx, 0
004c0432
004c0437 loc_4c0437:
004c0437 mov eax, [$69ceac]
004c043c mov eax, [eax+$44]
004c043f call -$1b5e8 ($4a4e5c) ; segment%54.public%4899 (PCMAV.exe)
004c043f
004c0444 mov esi, eax
004c0446 mov eax, [ebp-4]
004c0449 sub esi, [eax+$4c]
004c044c sar esi, 1
004c044e jns loc_4c0487
004c044e
004c0450 adc esi, 0
004c0453 jmp loc_4c0487
004c0453
004c0453 ; ---------------------------------------------------------
004c0453
004c0455 loc_4c0455:
004c0455 mov eax, [$69ceb0]
004c045a call +$1a0d ($4c1e6c) ; segment%58.public%5915 (PCMAV.exe)
004c045a
004c045f mov ebx, eax
004c0461 mov eax, [ebp-4]
004c0464 sub ebx, [eax+$48]
004c0467 sar ebx, 1
004c0469 jns loc_4c046e
004c0469
004c046b adc ebx, 0
004c0469
004c046e loc_4c046e:
004c046e mov eax, [$69ceb0]
004c0473 call +$19e8 ($4c1e60) ; segment%58.public%5914 (PCMAV.exe)
004c0473
004c0478 mov esi, eax
004c047a mov eax, [ebp-4]
004c047d sub esi, [eax+$4c]
004c0480 sar esi, 1
004c0482 jns loc_4c0487
004c0482
004c0484 adc esi, 0
004c0482
004c0487 loc_4c0487:
004c0487 mov eax, [$69ceb0]
004c048c call +$19f3 ($4c1e84) ; segment%58.public%5917 (PCMAV.exe)
004c048c
004c0491 cmp ebx, eax
004c0493 jge loc_4c04a1
004c0493
004c0495 mov eax, [$69ceb0]
004c049a call +$19e5 ($4c1e84) ; segment%58.public%5917 (PCMAV.exe)
004c049a
004c049f mov ebx, eax
004c049a
004c04a1 loc_4c04a1:
004c04a1 mov eax, [$69ceb0]
004c04a6 call +$19cd ($4c1e78) ; segment%58.public%5916 (PCMAV.exe)
004c04a6
004c04ab cmp esi, eax
004c04ad jge loc_4c04bb
004c04ad
004c04af mov eax, [$69ceb0]
004c04b4 call +$19bf ($4c1e78) ; segment%58.public%5916 (PCMAV.exe)
004c04b4
004c04b9 mov esi, eax
004c04b4
004c04bb loc_4c04bb:
004c04bb mov eax, [ebp-4]
004c04be mov eax, [eax+$48]
004c04c1 push eax
004c04c2 mov eax, [ebp-4]
004c04c5 mov eax, [eax+$4c]
004c04c8 push eax
004c04c9 mov ecx, esi
004c04cb mov edx, ebx
004c04cd mov eax, [ebp-4]
004c04d0 mov ebx, [eax]
004c04d2 call dword ptr [ebx+$88]
004c04d2
004c04d8 mov eax, [ebp-4]
004c04db cmp byte ptr [eax+$57], 0
004c04df jz loc_4c070d
004c04df
004c04e5 mov eax, [ebp-4]
004c04e8 call -$2825 ($4bdcc8) ; segment%58.public%5793 (PCMAV.exe)
004c04e8
004c04ed jmp loc_4c070d
004c04ed
004c04ed ; ---------------------------------------------------------
004c04ed
004c04f2 loc_4c04f2:
004c04f2 mov eax, [ebp-4]
004c04f5 movzx eax, byte ptr [eax+$278]
004c04fc mov edx, eax
004c04fe add dl, -6
004c0501 sub dl, 2
004c0504 jnb loc_4c0612
004c0504
004c050a mov eax, [$69ceac]
004c050f mov esi, [eax+$44]
004c0512 mov eax, [ebp-4]
004c0515 cmp byte ptr [eax+$278], 7
004c051c jnz loc_4c0539
004c051c
004c051e mov eax, [ebp-4]
004c0521 mov eax, [eax+4]
004c0524 mov edx, [$4b7cec]
004c052a call -$bbc27 ($404908) ; segment%0.public%197 (PCMAV.exe)
004c052a
004c052f test al, al
004c0531 jz loc_4c0539
004c0531
004c0533 mov eax, [ebp-4]
004c0536 mov esi, [eax+4]
004c0533
004c0539 loc_4c0539:
004c0539 test esi, esi
004c053b jz loc_4c0575
004c053b
004c053d mov eax, esi
004c053f call -$466c ($4bbed8) ; segment%58.public%5725 (PCMAV.exe)
004c053f
004c0544 mov ebx, eax
004c0546 mov eax, [esi+$48]
004c0549 mov edx, [ebp-4]
004c054c sub eax, [edx+$48]
004c054f sar eax, 1
004c0551 jns loc_4c0556
004c0551
004c0553 adc eax, 0
004c0551
004c0556 loc_4c0556:
004c0556 add ebx, eax
004c0558 mov eax, esi
004c055a call -$4667 ($4bbef8) ; segment%58.public%5726 (PCMAV.exe)
004c055a
004c055f mov edx, [esi+$4c]
004c0562 mov ecx, [ebp-4]
004c0565 sub edx, [ecx+$4c]
004c0568 sar edx, 1
004c056a jns loc_4c056f
004c056a
004c056c adc edx, 0
004c056a
004c056f loc_4c056f:
004c056f add eax, edx
004c0571 mov esi, eax
004c0573 jmp loc_4c05a7
004c0573
004c0573 ; ---------------------------------------------------------
004c0573
004c0575 loc_4c0575:
004c0575 mov eax, [$69ceb0]
004c057a call +$18ed ($4c1e6c) ; segment%58.public%5915 (PCMAV.exe)
004c057a
004c057f mov ebx, eax
004c0581 mov eax, [ebp-4]
004c0584 sub ebx, [eax+$48]
004c0587 sar ebx, 1
004c0589 jns loc_4c058e
004c0589
004c058b adc ebx, 0
004c0589
004c058e loc_4c058e:
004c058e mov eax, [$69ceb0]
004c0593 call +$18c8 ($4c1e60) ; segment%58.public%5914 (PCMAV.exe)
004c0593
004c0598 mov esi, eax
004c059a mov eax, [ebp-4]
004c059d sub esi, [eax+$4c]
004c05a0 sar esi, 1
004c05a2 jns loc_4c05a7
004c05a2
004c05a4 adc esi, 0
004c05a2
004c05a7 loc_4c05a7:
004c05a7 mov eax, [$69ceb0]
004c05ac call +$18d3 ($4c1e84) ; segment%58.public%5917 (PCMAV.exe)
004c05ac
004c05b1 cmp ebx, eax
004c05b3 jge loc_4c05c1
004c05b3
004c05b5 mov eax, [$69ceb0]
004c05ba call +$18c5 ($4c1e84) ; segment%58.public%5917 (PCMAV.exe)
004c05ba
004c05bf mov ebx, eax
004c05ba
004c05c1 loc_4c05c1:
004c05c1 mov eax, [$69ceb0]
004c05c6 call +$18ad ($4c1e78) ; segment%58.public%5916 (PCMAV.exe)
004c05c6
004c05cb cmp esi, eax
004c05cd jge loc_4c05db
004c05cd
004c05cf mov eax, [$69ceb0]
004c05d4 call +$189f ($4c1e78) ; segment%58.public%5916 (PCMAV.exe)
004c05d4
004c05d9 mov esi, eax
004c05d4
004c05db loc_4c05db:
004c05db mov eax, [ebp-4]
004c05de mov eax, [eax+$48]
004c05e1 push eax
004c05e2 mov eax, [ebp-4]
004c05e5 mov eax, [eax+$4c]
004c05e8 push eax
004c05e9 mov ecx, esi
004c05eb mov edx, ebx
004c05ed mov eax, [ebp-4]
004c05f0 mov ebx, [eax]
004c05f2 call dword ptr [ebx+$88]
004c05f2
004c05f8 mov eax, [ebp-4]
004c05fb cmp byte ptr [eax+$57], 0
004c05ff jz loc_4c070d
004c05ff
004c0605 mov eax, [ebp-4]
004c0608 call -$2945 ($4bdcc8) ; segment%58.public%5793 (PCMAV.exe)
004c0608
004c060d jmp loc_4c070d
004c060d
004c060d ; ---------------------------------------------------------
004c060d
004c0612 loc_4c0612:
004c0612 cmp al, 5
004c0614 jnz loc_4c070d
004c0614
004c061a mov eax, [ebp-4]
004c061d cmp byte ptr [eax+$277], 1
004c0624 jnz loc_4c0660
004c0624
004c0626 mov eax, [$69ceac]
004c062b mov eax, [eax+$44]
004c062e call -$1b81b ($4a4e18) ; segment%54.public%4897 (PCMAV.exe)
004c062e
004c0633 mov ebx, eax
004c0635 mov eax, [ebp-4]
004c0638 sub ebx, [eax+$48]
004c063b sar ebx, 1
004c063d jns loc_4c0642
004c063d
004c063f adc ebx, 0
004c063d
004c0642 loc_4c0642:
004c0642 mov eax, [$69ceac]
004c0647 mov eax, [eax+$44]
004c064a call -$1b7f3 ($4a4e5c) ; segment%54.public%4899 (PCMAV.exe)
004c064a
004c064f mov esi, eax
004c0651 mov eax, [ebp-4]
004c0654 sub esi, [eax+$4c]
004c0657 sar esi, 1
004c0659 jns loc_4c06bc
004c0659
004c065b adc esi, 0
004c065e jmp loc_4c06bc
004c065e
004c065e ; ---------------------------------------------------------
004c065e
004c0660 loc_4c0660:
004c0660 mov eax, [$69ceb0]
004c0665 call +$1832 ($4c1e9c) ; segment%58.public%5919 (PCMAV.exe)
004c0665
004c066a mov ebx, eax
004c066c sar ebx, 1
004c066e jns loc_4c0673
004c066e
004c0670 adc ebx, 0
004c066e
004c0673 loc_4c0673:
004c0673 mov eax, [$69ceb0]
004c0678 call +$1807 ($4c1e84) ; segment%58.public%5917 (PCMAV.exe)
004c0678
004c067d add ebx, eax
004c067f mov eax, [ebp-4]
004c0682 mov eax, [eax+$48]
004c0685 sar eax, 1
004c0687 jns loc_4c068c
004c0687
004c0689 adc eax, 0
004c0687
004c068c loc_4c068c:
004c068c sub ebx, eax
004c068e mov eax, [$69ceb0]
004c0693 call +$17f8 ($4c1e90) ; segment%58.public%5918 (PCMAV.exe)
004c0693
004c0698 mov esi, eax
004c069a sar esi, 1
004c069c jns loc_4c06a1
004c069c
004c069e adc esi, 0
004c069c
004c06a1 loc_4c06a1:
004c06a1 mov eax, [$69ceb0]
004c06a6 call +$17cd ($4c1e78) ; segment%58.public%5916 (PCMAV.exe)
004c06a6
004c06ab add esi, eax
004c06ad mov eax, [ebp-4]
004c06b0 mov eax, [eax+$4c]
004c06b3 sar eax, 1
004c06b5 jns loc_4c06ba
004c06b5
004c06b7 adc eax, 0
004c06b5
004c06ba loc_4c06ba:
004c06ba sub esi, eax
004c06b7
004c06bc loc_4c06bc:
004c06bc mov eax, [$69ceb0]
004c06c1 call +$17be ($4c1e84) ; segment%58.public%5917 (PCMAV.exe)
004c06c1
004c06c6 cmp ebx, eax
004c06c8 jge loc_4c06d6
004c06c8
004c06ca mov eax, [$69ceb0]
004c06cf call +$17b0 ($4c1e84) ; segment%58.public%5917 (PCMAV.exe)
004c06cf
004c06d4 mov ebx, eax
004c06cf
004c06d6 loc_4c06d6:
004c06d6 mov eax, [$69ceb0]
004c06db call +$1798 ($4c1e78) ; segment%58.public%5916 (PCMAV.exe)
004c06db
004c06e0 cmp esi, eax
004c06e2 jge loc_4c06f0
004c06e2
004c06e4 mov eax, [$69ceb0]
004c06e9 call +$178a ($4c1e78) ; segment%58.public%5916 (PCMAV.exe)
004c06e9
004c06ee mov esi, eax
004c06e9
004c06f0 loc_4c06f0:
004c06f0 mov eax, [ebp-4]
004c06f3 mov eax, [eax+$48]
004c06f6 push eax
004c06f7 mov eax, [ebp-4]
004c06fa mov eax, [eax+$4c]
004c06fd push eax
004c06fe mov ecx, esi
004c0700 mov edx, ebx
004c0702 mov eax, [ebp-4]
004c0705 mov ebx, [eax]
004c0707 call dword ptr [ebx+$88]
004c0707
004c070d loc_4c070d:
004c070d mov eax, [ebp-4]
004c0710 mov byte ptr [eax+$278], 0
004c0717 mov eax, [ebp-4]
004c071a cmp byte ptr [eax+$277], 1
004c0721 jnz loc_4c07dc
004c0721
004c0727 mov eax, [ebp-4]
004c072a cmp byte ptr [eax+$273], 2
004c0731 jnz loc_4c0769
004c0731
004c0733 push 0
004c0735 mov eax, [ebp-4]
004c0738 call -$130fd ($4ad640) ; segment%54.public%5267 (PCMAV.exe)
004c0738
004c073d push eax
004c073e push $223
004c0743 mov eax, [$69ceac]
004c0748 mov eax, [eax+$44]
004c074b mov eax, [eax+$29c]
004c0751 push eax
004c0752 call -$b73eb ($40936c) ; segment%3.public%1001 (PCMAV.exe)
004c0752
004c0757 push 3
004c0759 mov eax, [ebp-4]
004c075c call -$13121 ($4ad640) ; segment%54.public%5267 (PCMAV.exe)
004c075c
004c0761 push eax
004c0762 call -$b72eb ($40947c) ; segment%3.public%1035 (PCMAV.exe)
004c0762
004c0767 jmp loc_4c07ba
004c0767
004c0767 ; ---------------------------------------------------------
004c0767
004c0769 loc_4c0769:
004c0769 mov eax, [ebp-4]
004c076c movzx eax, byte ptr [eax+$273]
004c0773 mov eax, [eax*4+$689fa0]
004c077a push eax
004c077b mov eax, [ebp-4]
004c077e call -$13143 ($4ad640) ; segment%54.public%5267 (PCMAV.exe)
004c077e
004c0783 push eax
004c0784 call -$b730d ($40947c) ; segment%3.public%1035 (PCMAV.exe)
004c0784
004c0789 mov eax, [ebp-4]
004c078c mov eax, [eax+$48]
004c078f mov edx, [ebp-4]
004c0792 mov edx, [edx+$4c]
004c0795 shl edx, $10
004c0798 or eax, edx
004c079a push eax
004c079b push 0
004c079d push 5
004c079f mov eax, [ebp-4]
004c07a2 call -$13167 ($4ad640) ; segment%54.public%5267 (PCMAV.exe)
004c07a2
004c07a7 push eax
004c07a8 push $408e6c ; segment%3.public%841 (PCMAV.exe)
004c07ad call -$b79f6 ($408dbc) ; segment%3.public%819 (PCMAV.exe)
004c07ad
004c07b2 mov eax, [ebp-4]
004c07b5 call -$1b07e ($4a573c) ; segment%54.public%4939 (PCMAV.exe)
004c07b5
004c07ba loc_4c07ba:
004c07ba push 0
004c07bc push 0
004c07be push $234
004c07c3 mov eax, [$69ceac]
004c07c8 mov eax, [eax+$44]
004c07cb mov eax, [eax+$29c]
004c07d1 push eax
004c07d2 call -$b746b ($40936c) ; segment%3.public%1001 (PCMAV.exe)
004c07d2
004c07d7 jmp loc_4c093b
004c07d7
004c07d7 ; ---------------------------------------------------------
004c07d7
004c07dc loc_4c07dc:
004c07dc mov eax, [ebp-4]
004c07df movzx eax, byte ptr [eax+$273]
004c07e6 mov eax, [eax*4+$689fa0]
004c07ed push eax
004c07ee mov eax, [ebp-4]
[...]
date/time : 2011-05-02, 07:59:06, 739ms
computer name : AWEDCOMP
user name : User <admin>
registered owner : Dewangga Fatah / AWEDcomP
operating system : Windows 7 Service Pack 1 build 7601
system language : Indonesian
system up time : 15 minutes 26 seconds
program up time : 7 minutes 41 seconds
processors : 4x Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz
physical memory : 539/1900 MB (free/total)
free disk space : (C:) 30,29 GB
display mode : 1366x768, 32 bit
process id : $334
allocated memory : 161,50 MB
command line : "C:\Program Files\P3CM4V\PCMAV.exe" /RTP
executable : PCMAV.exe
exec. date/time : 2011-02-22 09:39
version : 5.0.0.0
compiled with : Delphi 2006/07
madExcept version : 3.0m beta 1
PCMAV.exe.mad : $000260e0, $14f23e56, $a75feb77
callstack crc : $b4a6b51e, $8f7fe4de, $8f7fe4de
exception number : 1
exception class : EAccessViolation
exception message : Access violation at address 00404784 in module 'PCMAV.exe'. Read of address FFFFFFFC.
main thread ($d2c):
00404784 +008 PCMAV.exe segment%0 public%191
00604373 +4cb PCMAV.exe segment%268 public%12199
0049c25b +0a7 PCMAV.exe segment%53 public%4615
0049d433 +013 PCMAV.exe segment%53 public%4667
0049e43a +082 PCMAV.exe segment%53 public%4712
0049e389 +01d PCMAV.exe segment%53 public%4711
00475ee8 +014 PCMAV.exe segment%31 public%3532
77cb2e3c +00a USER32.dll DispatchMessageA
004c4810 +0fc PCMAV.exe segment%58 public%6000
004c484a +00a PCMAV.exe segment%58 public%6002
004c4b5b +0b3 PCMAV.exe segment%58 public%6007
00684280 +1dc PCMAV.exe segment%417 public%13118
76c93c43 +010 kernel32.dll BaseThreadInitThunk
thread $d24 (TWndProc): <suspended>
00614e03 +1f PCMAV.exe segment%274 public%12335
thread $1088:
77db6a02 +0a ntdll.dll NtWaitForMultipleObjects
76c93c43 +10 kernel32.dll BaseThreadInitThunk
thread $14b8 (TRegMonitorThread):
77db6a22 +0a ntdll.dll NtWaitForSingleObject
761c1796 +66 KERNELBASE.dll WaitForSingleObjectEx
76c8baee +3e kernel32.dll WaitForSingleObjectEx
76c8ba9d +0d kernel32.dll WaitForSingleObject
00613d8a +12 PCMAV.exe segment%271 public%12324
00452c7b +2b PCMAV.exe segment%23 public%2341
00474774 +34 PCMAV.exe segment%31 public%3425
004056f4 +28 PCMAV.exe segment%0 public%250
00452b5d +0d PCMAV.exe segment%23 public%2339
00452bc7 +37 PCMAV.exe segment%23 public%2340
76c93c43 +10 kernel32.dll BaseThreadInitThunk
>> created by main thread ($d2c) at:
00613c74 +18 PCMAV.exe segment%271 public%12321
thread $14e8 (TRegMonitorThread):
77db6a22 +0a ntdll.dll NtWaitForSingleObject
761c1796 +66 KERNELBASE.dll WaitForSingleObjectEx
76c8baee +3e kernel32.dll WaitForSingleObjectEx
76c8ba9d +0d kernel32.dll WaitForSingleObject
00613d8a +12 PCMAV.exe segment%271 public%12324
00452c7b +2b PCMAV.exe segment%23 public%2341
00474774 +34 PCMAV.exe segment%31 public%3425
004056f4 +28 PCMAV.exe segment%0 public%250
00452b5d +0d PCMAV.exe segment%23 public%2339
00452bc7 +37 PCMAV.exe segment%23 public%2340
76c93c43 +10 kernel32.dll BaseThreadInitThunk
>> created by main thread ($d2c) at:
00613c74 +18 PCMAV.exe segment%271 public%12321
thread $12cc:
77db57d2 +0a ntdll.dll NtDelayExecution
761c1870 +4f KERNELBASE.dll SleepEx
761c1813 +0a KERNELBASE.dll Sleep
00452b5d +0d PCMAV.exe segment%23 public%2339
00452bc7 +37 PCMAV.exe segment%23 public%2340
76c93c43 +10 kernel32.dll BaseThreadInitThunk
>> created by main thread ($d2c) at:
76ddda8e +00 ole32.dll
thread $6d8:
77db6422 +00a ntdll.dll NtReplyWaitReceivePort
00546508 +030 PCMAV.exe segment%105 public%8432
00452b5d +00d PCMAV.exe segment%23 public%2339
00452bc7 +037 PCMAV.exe segment%23 public%2340
76c93c43 +010 kernel32.dll BaseThreadInitThunk
>> created by thread $14b4 at:
005469d3 +263 PCMAV.exe segment%105 public%8433
thread $9ec: <priority:1>
77db6a22 +00a ntdll.dll NtWaitForSingleObject
761c1796 +066 KERNELBASE.dll WaitForSingleObjectEx
76c8baee +03e kernel32.dll WaitForSingleObjectEx
76c8ba9d +00d kernel32.dll WaitForSingleObject
0054618a +012 PCMAV.exe segment%105 public%8431
00452b5d +00d PCMAV.exe segment%23 public%2339
00452bc7 +037 PCMAV.exe segment%23 public%2340
76c93c43 +010 kernel32.dll BaseThreadInitThunk
>> created by thread $14b4 at:
005469f4 +284 PCMAV.exe segment%105 public%8433
thread $1698:
77db6a32 +0a ntdll.dll NtWaitForWorkViaWorkerFactory
76c93c43 +10 kernel32.dll BaseThreadInitThunk
thread $13e0:
77db6a32 +0a ntdll.dll NtWaitForWorkViaWorkerFactory
76c93c43 +10 kernel32.dll BaseThreadInitThunk
thread $1ac:
77db6a22 +0a ntdll.dll NtWaitForSingleObject
761c1796 +66 KERNELBASE.dll WaitForSingleObjectEx
76c8baee +3e kernel32.dll WaitForSingleObjectEx
76c93c43 +10 kernel32.dll BaseThreadInitThunk
thread $790: <priority:1>
77db63a2 +0a ntdll.dll NtRemoveIoCompletion
76c93c43 +10 kernel32.dll BaseThreadInitThunk
thread $16b4:
77db6a32 +0a ntdll.dll NtWaitForWorkViaWorkerFactory
76c93c43 +10 kernel32.dll BaseThreadInitThunk
thread $988:
77db6a32 +0a ntdll.dll NtWaitForWorkViaWorkerFactory
76c93c43 +10 kernel32.dll BaseThreadInitThunk
processes:
0000 Idle 0 0 0
0004 System 0 0 0
015c smss.exe 0 0 0 normal C:\Windows\system32
01e4 csrss.exe 0 0 0 normal C:\Windows\system32
0238 wininit.exe 0 0 0 high C:\Windows\system32
0240 csrss.exe 1 174 81 normal C:\Windows\system32
0274 services.exe 0 0 0 normal C:\Windows\system32
027c lsass.exe 0 0 0 normal C:\Windows\system32
0284 lsm.exe 0 0 0 normal C:\Windows\system32
02e8 winlogon.exe 1 6 0 high C:\Windows\system32
032c svchost.exe 0 0 0 normal C:\Windows\system32
0390 USBSRService.exe 0 0 0 normal C:\Program Files\USB Safely Remove
03b0 nvvsvc.exe 0 0 0 normal C:\Windows\system32
03d8 svchost.exe 0 0 0 normal C:\Windows\system32
0408 MsMpEng.exe 0 0 0 normal C:\Program Files\Microsoft Security Client\Antimalware
0464 svchost.exe 0 0 0 normal C:\Windows\System32
0490 svchost.exe 0 0 0 normal C:\Windows\System32
04c0 svchost.exe 0 0 0 normal C:\Windows\system32
0558 TrustedInstaller.exe 0 0 0 normal C:\Windows\servicing
0584 svchost.exe 0 0 0 normal C:\Windows\system32
06b8 FBAgent.exe 0 0 0 normal C:\Windows\system32
06d0 ASLDRSrv.exe 0 0 0 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
06f4 GFNEXSrv.exe 0 0 0 normal C:\Program Files\ASUS\ATK Package\ATKGFNEX
071c WLANExt.exe 0 0 0 normal C:\Windows\system32
0728 conhost.exe 0 0 0 normal C:\Windows\system32
0788 spoolsv.exe 0 0 0 normal C:\Windows\System32
07b0 sched.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
01c8 svchost.exe 0 0 0 normal C:\Windows\system32
01cc svchost.exe 0 0 0 normal C:\Windows\System32
065c AntiARPClientLoader.exe 0 0 0 normal C:\Program Files\ColorSoft\AntiARP
0690 avfwsvc.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0624 avguard.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0820 ApplicationUpdater.exe 0 0 0 normal C:\Program Files\Application Updater
0834 mDNSResponder.exe 0 0 0 normal C:\Program Files\Bonjour
0848 btwdins.exe 0 0 0 normal C:\Program Files\WIDCOMM\Bluetooth Software
08b0 LMS.exe 0 0 0 normal C:\Program Files\Intel\Intel(R) Management Engine Components\LMS
08d0 NitroPDFDriverService.exe 0 0 0 normal C:\Program Files\Nitro PDF\Professional
0910 NLSSRV32.EXE 0 0 0 normal C:\Windows\system32
0928 SeaPort.EXE 0 0 0 normal C:\Program Files\Microsoft\BingBar
09c4 TuneUpUtilitiesService32.exe 0 0 0 normal C:\Program Files\TuneUp Utilities 2011
09fc WLIDSVC.EXE 0 0 0 normal C:\Program Files\Common Files\Microsoft Shared\Windows Live
0a24 Facewinks.exe 0 0 0 normal C:\Program Files\Facewinks
0a54 WLIDSvcM.exe 0 0 0 normal C:\Program Files\Common Files\Microsoft Shared\Windows Live
0ae4 avshadow.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0aec conhost.exe 0 0 0 normal C:\Windows\system32
0c00 avmailc.exe 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0c34 AVWEBGRD.EXE 0 0 0 normal C:\Program Files\Avira\AntiVir Desktop
0f28 NisSrv.exe 0 0 0 normal C:\Program Files\Microsoft Security Client\Antimalware
0d7c svchost.exe 0 0 0 normal C:\Windows\system32
0dbc svchost.exe 0 0 0 normal C:\Windows\system32
0f30 svchost.exe 0 0 0 normal C:\Windows\system32
0ff4 NASvc.exe 0 0 0 normal C:\Program Files\Nero\Update
0a88 UNS.exe 0 0 0 normal C:\Program Files\Intel\Intel(R) Management Engine Components\UNS
0f18 NvXDSync.exe 1 9 9 normal C:\Program Files\NVIDIA Corporation\Display
0968 nvvsvc.exe 1 26 9 normal C:\Windows\system32
073c wmiprvse.exe 0 0 0 normal C:\Windows\system32\wbem
0738 taskhost.exe 1 34 35 normal C:\Windows\system32
0794 Dwm.exe 1 15 2 high C:\Windows\system32
0fb8 TuneUpUtilitiesApp32.exe 1 215 97 normal C:\Program Files\TuneUp Utilities 2011
09f0 Explorer.EXE 1 537 287 normal C:\Windows
0e0c taskhost.exe 1 13 6 normal C:\Windows\system32
0e2c taskeng.exe 1 10 3 normal C:\Windows\system32
0530 ControlDeckStartUp.exe 1 9 3 below normal C:\Program Files\ASUS\ControlDeck
0630 ALU.exe 1 16 12 below normal C:\Program Files\ASUS\ASUS Live Update
07f8 ACMON.exe 1 14 8 below normal C:\Program Files\ASUS\Splendid
0774 BatteryLife.exe 1 15 7 below normal C:\Program Files\P4G
0a98 wcourier.exe 1 18 14 below normal C:\Program Files\ASUS\Wireless Console 3
0f68 wmiprvse.exe 0 0 0 normal C:\Windows\system32\wbem
0ed8 HControl.exe 1 14 10 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
0334 PCMAV.exe 1 238 158 below normal C:\Program Files\P3CM4V
0a84 ACEngSvr.exe 1 10 3 normal C:\Windows\System32
0e84 ATKOSD.exe 1 157 5 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
0cbc WDC.exe 1 16 8 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
0434 rundll32.exe 1 15 7 normal C:\Windows\System32
10c4 ATKOSD2.exe 1 21 14 normal C:\Program Files\ASUS\ATK Package\ATKOSD2
10f0 audiodg.exe 0 0 0
1128 DMedia.exe 1 13 6 normal C:\Program Files\ASUS\ATK Package\ATK Media
1178 HControlUser.exe 1 15 5 normal C:\Program Files\ASUS\ATK Package\ATK Hotkey
1274 msseces.exe 1 143 60 normal C:\Program Files\Microsoft Security Client
1304 Panda_URL_Filtering.exe 1 9 2 normal C:\ProgramData\Panda Security URL Filtering
13a4 avgnt.exe 1 96 28 normal C:\Program Files\Avira\AntiVir Desktop
1458 RtHDVCpl.exe 1 54 22 normal C:\Program Files\Realtek\Audio\HDA
162c mylbx.exe 1 165 66 normal C:\Program Files\My Lockbox
16a8 igfxtray.exe 1 12 5 normal C:\Windows\System32
16ec hkcmd.exe 1 10 17 normal C:\Windows\System32
17c8 igfxpers.exe 1 9 5 normal C:\Windows\System32
0bbc IDMan.exe 1 105 67 normal C:\Program Files\Internet Download Manager
11dc USBSafelyRemove.exe 1 370 79 normal C:\Program Files\USB Safely Remove
122c sidebar.exe 1 31 66 normal C:\Program Files\Windows Sidebar
1094 SRSPremiumPanel.exe 1 94 19 normal C:\Program Files\SRS Labs\SRS Premium Sound Control Panel
1384 wuauclt.exe 1 12 6 normal C:\Windows\system32
171c IEMonitor.exe 1 18 16 normal C:\Program Files\Internet Download Manager
1744 WmiApSrv.exe 0 0 0 normal C:\Windows\system32\wbem
127c MpCmdRun.exe 0 0 0 normal C:\Program Files\Microsoft Security Client\Antimalware
1060 MpCmdRun.exe 0 0 0 normal C:\Program Files\Microsoft Security Client\Antimalware
1700 conhost.exe 0 0 0 normal C:\Windows\system32
1330 svchost.exe 0 0 0 below normal C:\Windows\system32
0ce4 avconfig.exe 1 452 304 normal C:\program files\avira\antivir desktop
1240 GUARDGUI.EXE 1 111 60 normal C:\Program Files\Avira\AntiVir Desktop
cpu registers:
eax = 022f8c70
ebx = 00000001
ecx = 00000000
edx = 00fe0101
esi = 00000000
edi = 00000001
eip = 00404784
esp = 0012f40c
ebp = 0012f48c
stack dump:
0012f40c 78 43 60 00 a8 f4 12 00 - d0 4f 40 00 8c f4 12 00 xC`......O@.....
0012f41c 01 00 00 00 00 00 00 00 - 80 12 2e 02 00 00 00 00 ................
0012f42c 00 00 00 00 50 f4 12 00 - 00 00 00 00 00 00 00 00 ....P...........
0012f43c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f44c 00 00 00 00 f0 27 29 02 - 00 00 00 00 00 00 00 00 .....').........
0012f45c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f46c 00 58 02 00 00 00 00 00 - 00 00 00 00 04 00 00 00 .X..............
0012f47c 01 00 00 00 98 f4 12 00 - a7 d3 49 00 00 00 00 00 ..........I.....
0012f48c f0 f4 12 00 61 c2 49 00 - 1c f5 12 00 00 00 00 00 ....a.I.........
0012f49c 36 d4 49 00 04 00 00 00 - 3f e4 49 00 f8 f4 12 00 6.I.....?.I.....
0012f4ac d0 4f 40 00 f0 f4 12 00 - a8 f5 12 00 11 01 00 00 .O@.............
0012f4bc 00 00 00 00 00 00 00 00 - bc 6e 2c 00 c8 57 13 05 .........n,..W..
0012f4cc 90 73 2c 00 00 00 00 00 - 68 f4 12 00 00 00 00 00 .s,.....h.......
0012f4dc a0 f5 12 00 ed e0 d8 77 - 1c 7b 3f 00 fe ff ff ff .......w.{?.....
0012f4ec 18 6f 2f 02 14 f5 12 00 - 8c e3 49 00 c0 f5 12 00 .o/.......I.....
0012f4fc a0 4d 40 00 14 f5 12 00 - a8 f5 12 00 11 01 00 00 .M@.............
0012f50c 00 00 00 00 18 6f 2f 02 - 2c f5 12 00 ea 5e 47 00 .....o/.,....^G.
0012f51c 11 01 00 00 07 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f52c 58 f5 12 00 e7 c4 cb 77 - 5e 01 01 00 11 01 00 00 X......w^.......
0012f53c 07 00 00 00 00 00 00 00 - 11 01 00 00 cd ab ba dc ................
disassembling:
0040477c public segment%0.public%191 (PCMAV.exe): ; function entry point
0040477c test eax, eax
0040477e jz loc_404787
0040477e
00404780 mov dl, 1
00404782 mov ecx, [eax]
00404784 > call dword ptr [ecx-4]
00404784
00404787 loc_404787:
00404787 retada yang bisa bantu?
Nemu kaya gini tiap kali nyalain laptop. Gak ngerti pasti bareng pcmav valhalla
Pesan error tersebut muncul akibat PCMAV gagal membaca file yang berhubungan dengan karantina. Hal ini bisa terjadi jika file tersebut rusak. Jika tidak masalah dalam menghapus file di dalam karantina, Anda dapat menghapus folder "quarantine".
ada yang bisa bantu?
Saya lihat error terjadi ketika Anda mau menutup PCMAV atau proses update, apakah error ini selalu terjadi karena normalnya error ini tidak akan muncul. Mungkin Anda bisa menjelaskan prosedur terjadinya error agar dapat mudah kami pahami.
dedewawa wrote:Nemu kaya gini tiap kali nyalain laptop. Gak ngerti pasti bareng pcmav valhalla
Pesan error tersebut muncul akibat PCMAV gagal membaca file yang berhubungan dengan karantina. Hal ini bisa terjadi jika file tersebut rusak. Jika tidak masalah dalam menghapus file di dalam karantina, Anda dapat menghapus folder "quarantine".
dedewawa wrote:ada yang bisa bantu?
Saya lihat error terjadi ketika Anda mau menutup PCMAV atau proses update, apakah error ini selalu terjadi karena normalnya error ini tidak akan muncul. Mungkin Anda bisa menjelaskan prosedur terjadinya error agar dapat mudah kami pahami.
thanx...dicoba deh.
prosedur error gimana? saya juga belum mudeng untuk bacanya. Yang jelas pernah sewaktu scan terasa lama, jadi langsung dimatikan valhalla 5.0 nya secara forced. Pernah juga sewaktu booting jadi terasa lama sekali. Ku pencet aja Ctrl+alt+del trus matikan valhalla secara forced. Yang sering saya perhatikan, pcmav sering kelamaan saat dia booting. lama ngambil database-nya. entah milik pcmav sendiri ataupun clamav. walau yang paling lama itu milik clamav. terkadang clamav dapat terambil, kadang juga gagal.
apa saya upgrade ke 5.1 saja ya? tinggal timpa kan yang baru kan??
@dedewawa : Maksudnya, bagaimana errror tersebut dapat terjadi, apakah setelah menutup/exit pada PCMAV dsb. Dari log, Anda cuma mengalami error sekali saja.
apa saya upgrade ke 5.1 saja ya? tinggal timpa kan yang baru kan??
Ya, tinggal timpa saja atau hapus folder PCMAV yang lama, lalu kopikan folder PCMAV yang baru.
@dedewawa : Maksudnya, bagaimana errror tersebut dapat terjadi, apakah setelah menutup/exit pada PCMAV dsb. Dari log, Anda cuma mengalami error sekali saja.
dedewawa wrote:apa saya upgrade ke 5.1 saja ya? tinggal timpa kan yang baru kan??
Ya, tinggal timpa saja atau hapus folder PCMAV yang lama, lalu kopikan folder PCMAV yang baru.
"solved" dengan pcmav 5.1... makasih kaka
eerrr, mungkin bisa ditampilin skrinsut nya atau penjelasan lebih detil, saya kurang paham dgn penjelasan pertama anda (maaf saya lemot)
_____________________________
sorry, anda menanyakan bagaimana cara menampilkan scan with clamav, dan kemudian anda berkata anda adalah pengguna Avast Free v6. Scan with Clamav bisa digunakan jika anda menginstall clamav, atau Clamav terintegrasi dengan PCMAV [cmiiw]
Last edited by Schluter (14-07-2011 11:00:56)
Rio wrote:eerrr, mungkin bisa ditampilin skrinsut nya atau penjelasan lebih detil, saya kurang paham dgn penjelasan pertama anda (maaf saya lemot)
_____________________________
sorry, anda menanyakan bagaimana cara menampilkan scan with clamav, dan kemudian anda berkata anda adalah pengguna Avast Free v6. Scan with Clamav bisa digunakan jika anda menginstall clamav, atau Clamav terintegrasi dengan PCMAV [cmiiw]
Mungkin anda mengalami kesalahan pengamatan
1.saya menanyakan screenshot dari problem aditya darma ttg plugin clamav ny yg bermasalah
2.Saya tidak pernah memakai avast
PC Media © 2010 - 2013. Powered by PunBB.
[ Generated in 0.065 seconds, 11 queries executed ]