Lena47
-
Innehållsantal
6 -
Gick med
-
Besökte senast
Inlägg postade av Lena47
-
-
Hej hej!Datorn verkar må bra ;D
Tack tack
MVH/Lena47
-
Hej igen!
Nu har jag gått igenom procedurerna och här kommer resultaten
Malwarebytes' Anti-Malware 1.28
Databasversion: 1264
Windows 5.1.2600 Service Pack 3
2008-10-13 17:13:05
mbam-log-2008-10-13 (17-13-05).txt
Skanningstyp: Snabb skanning
Antal skannade objekt: 60717
Förfluten tid: 10 minute(s), 6 second(s)
Infekterade minnesprocesser: 0
Infekterade minnesmoduler: 0
Infekterade registernycklar: 0
Infekterade registervärden: 0
Infekterade registerdataposter: 0
Infekterade mappar: 0
Infekterade filer: 1
Infekterade minnesprocesser:
(Inga illasinnade poster hittades)
Infekterade minnesmoduler:
(Inga illasinnade poster hittades)
Infekterade registernycklar:
(Inga illasinnade poster hittades)
Infekterade registervärden:
(Inga illasinnade poster hittades)
Infekterade registerdataposter:
(Inga illasinnade poster hittades)
Infekterade mappar:
(Inga illasinnade poster hittades)
Infekterade filer:
C:Documents and SettingsSofieLokala inställningarTempGLK5F6.tmp (Rogue.EvidenceEliminator) -> Quarantined and deleted successfully.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:15:33, on 2008-10-13
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:windowssystemhpsysdrv.exe
C:HPKBDKBD.EXE
C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIBEE.EXE
C:ProgramTeliaTelias sakerhetstjansterCommonFSM32.EXE
C:ProgramTeliaSupportassistentbinsprtcmd.exe
C:ProgramExtraFilm HemmaAgent.exe
C:WINDOWSsystem32iid.exe
C:WINDOWSvVX1000.exe
C:ProgramDelade filerMicrosoft SharedWorks SharedWkUFind.exe
C:WINDOWSsystem32ctfmon.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:ProgramSms och mms i datorn Desktopmw.exe
C:ProgramGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:WINDOWSsystem32rundll32.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsgk32st.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFSMA32.EXE
C:ProgramTeliaTelias sakerhetstjansterAnti-VirusFSGK32.EXE
C:ProgramMicrosoft LifeCamMSCamS32.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFSMB32.EXE
C:ProgramCDBurnerXPNMSAccessU.exe
C:WINDOWSsystem32nvsvc32.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFCH32.EXE
C:WINDOWSSystem32svchost.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFAMEH32.EXE
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsqh.exe
C:ProgramTeliaTelias sakerhetstjansterFSGUIfsguidll.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfssm32.exe
C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsaua.exe
C:ProgramTeliaTelias sakerhetstjansterFWESProgramfsdfwd.exe
C:ProgramInternet Exploreriexplore.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsav32.exe
C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsus.exe
C:ProgramDelade filerMicrosoft SharedWindows LiveWLLoginProxy.exe
C:ProgramAdobeReader 8.0ReaderAcroRd32Info.exe
C:ProgramTrend MicroHijackThislena.exe.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://g.msn.se/0SESVSE/SAOS02
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.startsidan.telia.se/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Länkar
O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:ProgramDelade filerMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:programgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:ProgramGoogleGoogleToolbarNotifier3.1.807.1746swg.dll
O2 - BHO: TBHelper Class - {E46A2169-E328-471A-9788-F2B52BB9C681} - C:ProgramSms och mms i datorn Desktopmiebho1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:ProgramEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:ProgramEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 - Toolbar: Sms och mms i datorn - {6B49F76B-190A-4FC6-83EA-BAAD234BAFF8} - C:ProgramSms och mms i datorn Desktopmie1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:programgooglegoogletoolbar1.dll
O4 - HKLM..Run: [hpsysdrv] c:windowssystemhpsysdrv.exe
O4 - HKLM..Run: [HotKeysCmds] C:WINDOWSSystem32hkcmd.exe
O4 - HKLM..Run: [KBD] C:HPKBDKBD.EXE
O4 - HKLM..Run: [storageGuard] "C:ProgramVERITAS SoftwareUpdate Managersgtray.exe" /r
O4 - HKLM..Run: [WCOLOREAL] C:ProgramCOMPAQColorealcoloreal.exe
O4 - HKLM..Run: [Recguard] C:WINDOWSSMINSTRECGUARD.EXE
O4 - HKLM..Run: [uSB] C:WINDOWSsystem32usb.exe
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [nwiz] nwiz.exe /install
O4 - HKLM..Run: [PS2] C:WINDOWSsystem32ps2.exe
O4 - HKLM..Run: [EPSON Stylus DX4000 Series] C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIBEE.EXE /FU "C:WINDOWSTEMPE_S36F.tmp" /EF "HKLM"
O4 - HKLM..Run: [F-Secure Manager] "C:ProgramTeliaTelias sakerhetstjansterCommonFSM32.EXE" /splash
O4 - HKLM..Run: [F-Secure TNB] "C:ProgramTeliaTelias sakerhetstjansterFSGUITNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM..Run: [Telia] "C:ProgramTeliaSupportassistentbinsprtcmd.exe" /P Telia
O4 - HKLM..Run: [ExtraFilmHemmaAgent] "C:ProgramExtraFilm HemmaAgent.exe"
O4 - HKLM..Run: [Net iD] C:WINDOWSsystem32iid.exe
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:ProgramAdobeReader 8.0ReaderReader_sl.exe"
O4 - HKLM..Run: [VX1000] C:WINDOWSvVX1000.exe
O4 - HKLM..Run: [Microsoft Works Update Detection] C:ProgramDelade filerMicrosoft SharedWorks SharedWkUFind.exe
O4 - HKLM..Run: [lifeCam] "C:ProgramMicrosoft LifeCamLifeExp.exe"
O4 - HKCU..Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU..Run: [sms och mms i datorn Desktop] "C:ProgramSms och mms i datorn Desktopmw.exe" /AutoStart
O4 - HKCU..Run: [swg] C:ProgramGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSSystem32CTFMON.EXE (User 'LOKAL TJÄNST')
O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSSystem32CTFMON.EXE (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:ProgramMICROS~2OFFICE11EXCEL.EXE/3000
O8 - Extra context menu item: Skicka som mms... - file://C:ProgramSms och mms i datorn Desktopsendmms.htm
O8 - Extra context menu item: Skicka som sms... - file://C:ProgramSms och mms i datorn Desktopsendsms.htm
O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:ProgramMICROS~2OFFICE11REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe (file missing)
O16 - DPF: {5BF56AD2-E297-416E-BC49-000004040507} - https://cve.trust.telia.com/TeliaEleg/iidsetup.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - https://lagring.storegate.se/User/Files/Cab...geUploader4.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.se/ImageUploader4.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterFWESProgramfsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterCommonFSMA32.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:ProgramGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: NMSAccessU - Unknown owner - C:ProgramCDBurnerXPNMSAccessU.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:ProgramPC Connectivity SolutionServiceLayer.exe
--
End of file - 8948 bytes
Hoppas jag fått med allt
Man tackar och bugar för hjälpen
MVH/Lena47
-
Hej!
Nej jag vet faktiskt inte vad det är för något.
MVH/Lena47
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:57:18, on 2008-10-13
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:windowssystemhpsysdrv.exe
C:HPKBDKBD.EXE
C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIBEE.EXE
C:ProgramTeliaTelias sakerhetstjansterCommonFSM32.EXE
C:ProgramTeliaSupportassistentbinsprtcmd.exe
C:ProgramExtraFilm HemmaAgent.exe
C:WINDOWSsystem32iid.exe
C:WINDOWSvVX1000.exe
C:ProgramDelade filerMicrosoft SharedWorks SharedWkUFind.exe
C:WINDOWSsystem32ctfmon.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:ProgramSms och mms i datorn Desktopmw.exe
C:WINDOWSsystem32rundll32.exe
C:ProgramGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsgk32st.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFSMA32.EXE
C:ProgramTeliaTelias sakerhetstjansterAnti-VirusFSGK32.EXE
C:ProgramMicrosoft LifeCamMSCamS32.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFSMB32.EXE
C:ProgramCDBurnerXPNMSAccessU.exe
C:WINDOWSsystem32nvsvc32.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFCH32.EXE
C:WINDOWSSystem32svchost.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFAMEH32.EXE
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsqh.exe
C:ProgramTeliaTelias sakerhetstjansterFSGUIfsguidll.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfssm32.exe
C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsaua.exe
C:ProgramTeliaTelias sakerhetstjansterFWESProgramfsdfwd.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsav32.exe
C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsus.exe
C:ProgramWindows LiveMessengermsnmsgr.exe
C:ProgramWindows LiveMessengerusnsvc.exe
C:ProgramInternet Exploreriexplore.exe
C:ProgramDelade filerMicrosoft SharedWindows LiveWLLoginProxy.exe
C:ProgramTrend MicroHijackThislena.exe.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://g.msn.se/0SESVSE/SAOS02
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://startsidan.telia.se/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Länkar
O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:ProgramDelade filerMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:programgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:ProgramGoogleGoogleToolbarNotifier3.1.807.1746swg.dll
O2 - BHO: TBHelper Class - {E46A2169-E328-471A-9788-F2B52BB9C681} - C:ProgramSms och mms i datorn Desktopmiebho1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:ProgramEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:ProgramEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 - Toolbar: Sms och mms i datorn - {6B49F76B-190A-4FC6-83EA-BAAD234BAFF8} - C:ProgramSms och mms i datorn Desktopmie1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:programgooglegoogletoolbar1.dll
O4 - HKLM..Run: [hpsysdrv] c:windowssystemhpsysdrv.exe
O4 - HKLM..Run: [HotKeysCmds] C:WINDOWSSystem32hkcmd.exe
O4 - HKLM..Run: [KBD] C:HPKBDKBD.EXE
O4 - HKLM..Run: [storageGuard] "C:ProgramVERITAS SoftwareUpdate Managersgtray.exe" /r
O4 - HKLM..Run: [WCOLOREAL] C:ProgramCOMPAQColorealcoloreal.exe
O4 - HKLM..Run: [Recguard] C:WINDOWSSMINSTRECGUARD.EXE
O4 - HKLM..Run: [uSB] C:WINDOWSsystem32usb.exe
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [nwiz] nwiz.exe /install
O4 - HKLM..Run: [PS2] C:WINDOWSsystem32ps2.exe
O4 - HKLM..Run: [EPSON Stylus DX4000 Series] C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIBEE.EXE /FU "C:WINDOWSTEMPE_S36F.tmp" /EF "HKLM"
O4 - HKLM..Run: [F-Secure Manager] "C:ProgramTeliaTelias sakerhetstjansterCommonFSM32.EXE" /splash
O4 - HKLM..Run: [F-Secure TNB] "C:ProgramTeliaTelias sakerhetstjansterFSGUITNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM..Run: [Telia] "C:ProgramTeliaSupportassistentbinsprtcmd.exe" /P Telia
O4 - HKLM..Run: [ExtraFilmHemmaAgent] "C:ProgramExtraFilm HemmaAgent.exe"
O4 - HKLM..Run: [Net iD] C:WINDOWSsystem32iid.exe
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:ProgramAdobeReader 8.0ReaderReader_sl.exe"
O4 - HKLM..Run: [VX1000] C:WINDOWSvVX1000.exe
O4 - HKLM..Run: [Microsoft Works Update Detection] C:ProgramDelade filerMicrosoft SharedWorks SharedWkUFind.exe
O4 - HKLM..Run: [lifeCam] "C:ProgramMicrosoft LifeCamLifeExp.exe"
O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k
O4 - HKCU..Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU..Run: [sms och mms i datorn Desktop] "C:ProgramSms och mms i datorn Desktopmw.exe" /AutoStart
O4 - HKCU..Run: [swg] C:ProgramGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSSystem32CTFMON.EXE (User 'LOKAL TJÄNST')
O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSSystem32CTFMON.EXE (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:ProgramMICROS~2OFFICE11EXCEL.EXE/3000
O8 - Extra context menu item: Skicka som mms... - file://C:ProgramSms och mms i datorn Desktopsendmms.htm
O8 - Extra context menu item: Skicka som sms... - file://C:ProgramSms och mms i datorn Desktopsendsms.htm
O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:ProgramMICROS~2OFFICE11REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe (file missing)
O16 - DPF: {5BF56AD2-E297-416E-BC49-000004040507} - https://cve.trust.telia.com/TeliaEleg/iidsetup.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - https://lagring.storegate.se/User/Files/Cab...geUploader4.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.se/ImageUploader4.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterFWESProgramfsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterCommonFSMA32.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:ProgramGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: NMSAccessU - Unknown owner - C:ProgramCDBurnerXPNMSAccessU.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:ProgramPC Connectivity SolutionServiceLayer.exe
-
*********************************************
2009-01-08:
Tråden är nu låst.
Tycker du att den är felaktigt låst, var god kontakta
*********************************************
Behöver hjälp med att tyda det här. Det kommer upp att det finns skadlig kod varje gång jag öppnar internet och skärmen stänger ner. Detta är vad som framkom efter jag scannat. Vad kan felet vara? MVH Lena47
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:windowssystemhpsysdrv.exe
C:HPKBDKBD.EXE
C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIBEE.EXE
C:ProgramTeliaTelias sakerhetstjansterCommonFSM32.EXE
C:ProgramTeliaSupportassistentbinsprtcmd.exe
C:ProgramExtraFilm HemmaAgent.exe
C:WINDOWSsystem32iid.exe
C:WINDOWSvVX1000.exe
C:ProgramDelade filerMicrosoft SharedWorks SharedWkUFind.exe
C:WINDOWSsystem32ctfmon.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:ProgramSms och mms i datorn Desktopmw.exe
C:WINDOWSsystem32rundll32.exe
C:ProgramGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsgk32st.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFSMA32.EXE
C:ProgramTeliaTelias sakerhetstjansterAnti-VirusFSGK32.EXE
C:ProgramMicrosoft LifeCamMSCamS32.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFSMB32.EXE
C:ProgramCDBurnerXPNMSAccessU.exe
C:WINDOWSsystem32nvsvc32.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFCH32.EXE
C:WINDOWSSystem32svchost.exe
C:ProgramTeliaTelias sakerhetstjansterCommonFAMEH32.EXE
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsqh.exe
C:ProgramTeliaTelias sakerhetstjansterFSGUIfsguidll.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfssm32.exe
C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsaua.exe
C:ProgramTeliaTelias sakerhetstjansterFWESProgramfsdfwd.exe
C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsav32.exe
C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsus.exe
C:ProgramWindows LiveMessengermsnmsgr.exe
C:ProgramWindows LiveMessengerusnsvc.exe
C:ProgramInternet Exploreriexplore.exe
C:ProgramDelade filerMicrosoft SharedWindows LiveWLLoginProxy.exe
C:ProgramTrend MicroHijackThislena.exe.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://g.msn.se/0SESVSE/SAOS02
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://startsidan.telia.se/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Länkar
O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:ProgramDelade filerMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:programgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:ProgramGoogleGoogleToolbarNotifier3.1.807.1746swg.dll
O2 - BHO: TBHelper Class - {E46A2169-E328-471A-9788-F2B52BB9C681} - C:ProgramSms och mms i datorn Desktopmiebho1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:ProgramEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:ProgramEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 - Toolbar: Sms och mms i datorn - {6B49F76B-190A-4FC6-83EA-BAAD234BAFF8} - C:ProgramSms och mms i datorn Desktopmie1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:programgooglegoogletoolbar1.dll
O4 - HKLM..Run: [hpsysdrv] c:windowssystemhpsysdrv.exe
O4 - HKLM..Run: [HotKeysCmds] C:WINDOWSSystem32hkcmd.exe
O4 - HKLM..Run: [KBD] C:HPKBDKBD.EXE
O4 - HKLM..Run: [storageGuard] "C:ProgramVERITAS SoftwareUpdate Managersgtray.exe" /r
O4 - HKLM..Run: [WCOLOREAL] C:ProgramCOMPAQColorealcoloreal.exe
O4 - HKLM..Run: [Recguard] C:WINDOWSSMINSTRECGUARD.EXE
O4 - HKLM..Run: [uSB] C:WINDOWSsystem32usb.exe
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [nwiz] nwiz.exe /install
O4 - HKLM..Run: [PS2] C:WINDOWSsystem32ps2.exe
O4 - HKLM..Run: [EPSON Stylus DX4000 Series] C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIBEE.EXE /FU "C:WINDOWSTEMPE_S36F.tmp" /EF "HKLM"
O4 - HKLM..Run: [F-Secure Manager] "C:ProgramTeliaTelias sakerhetstjansterCommonFSM32.EXE" /splash
O4 - HKLM..Run: [F-Secure TNB] "C:ProgramTeliaTelias sakerhetstjansterFSGUITNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM..Run: [Telia] "C:ProgramTeliaSupportassistentbinsprtcmd.exe" /P Telia
O4 - HKLM..Run: [ExtraFilmHemmaAgent] "C:ProgramExtraFilm HemmaAgent.exe"
O4 - HKLM..Run: [Net iD] C:WINDOWSsystem32iid.exe
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:ProgramAdobeReader 8.0ReaderReader_sl.exe"
O4 - HKLM..Run: [VX1000] C:WINDOWSvVX1000.exe
O4 - HKLM..Run: [Microsoft Works Update Detection] C:ProgramDelade filerMicrosoft SharedWorks SharedWkUFind.exe
O4 - HKLM..Run: [lifeCam] "C:ProgramMicrosoft LifeCamLifeExp.exe"
O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k
O4 - HKCU..Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU..Run: [sms och mms i datorn Desktop] "C:ProgramSms och mms i datorn Desktopmw.exe" /AutoStart
O4 - HKCU..Run: [swg] C:ProgramGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSSystem32CTFMON.EXE (User 'LOKAL TJÄNST')
O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSSystem32CTFMON.EXE (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:ProgramMICROS~2OFFICE11EXCEL.EXE/3000
O8 - Extra context menu item: Skicka som mms... - file://C:ProgramSms och mms i datorn Desktopsendmms.htm
O8 - Extra context menu item: Skicka som sms... - file://C:ProgramSms och mms i datorn Desktopsendsms.htm
O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:ProgramMICROS~2OFFICE11REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe (file missing)
O16 - DPF: {5BF56AD2-E297-416E-BC49-000004040507} - https://cve.trust.telia.com/TeliaEleg/iidsetup.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - https://lagring.storegate.se/User/Files/Cab...geUploader4.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.se/ImageUploader4.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterAnti-Virusfsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterFSAUAprogramfsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterFWESProgramfsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:ProgramTeliaTelias sakerhetstjansterCommonFSMA32.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:ProgramGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: NMSAccessU - Unknown owner - C:ProgramCDBurnerXPNMSAccessU.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:ProgramPC Connectivity SolutionServiceLayer.exe
--
End of file - 9057 bytes
t som ligger och stör i datorn. Har gjort en scanning och så här såg det ut efteråt/Lena47
Hej hej!
Problem med dator
i Borttagning av virus och andra skadliga program
Postad
Hela datorn och skärmen fungerar otroligt fint och bra. Det var ett tag sen den gjorde det.
Återigen så tackar jag för hjälpen.
MVH/Lena47