Just nu i M3-nätverket
Jump to content

Snälla någon, hjälp med HJT-logg


Toner

Recommended Posts

Hej, min dator har gått från rapp till galet slö. Har virussökt och slitit men utan resultat. Nu hoppas jag att någon kan se om det finns skräp i datorn via denna logg. Skulle bli väldigt glad om jag får hjälp.

 

logg:

 

Logfile of HijackThis v1.99.1

Scan saved at 20:22:10, on 2007-10-25

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16544)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program\Lavasoft\Ad-Aware 2007\aawservice.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\CTsvcCDA.exe

C:\Program\Delade filer\McAfee\HackerWatch\HWAPI.exe

C:\Program\McAfee\MSC\mcmscsvc.exe

c:\program\delade filer\mcafee\mna\mcnasvc.exe

C:\Program\McAfee\VIRUSS~1\mcods.exe

C:\Program\McAfee\MSC\mcpromgr.exe

c:\program\DELADE~1\mcafee\mcproxy\mcproxy.exe

c:\program\DELADE~1\mcafee\redirsvc\redirsvc.exe

C:\Program\McAfee\VIRUSS~1\mcshield.exe

C:\Program\McAfee\VIRUSS~1\mcsysmon.exe

C:\Program\McAfee\MPF\MPFSrv.exe

C:\Program\McAfee\MPS\mps.exe

C:\Program\McAfee\MSK\MskSrver.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program\SiteAdvisor\6172\SAService.exe

C:\WINDOWS\Explorer.EXE

C:\program\mcafee.com\agent\mcagent.exe

C:\Program\Creative\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE

C:\Program\Creative\Sound Blaster X-Fi\Volume Panel\VolPanel.exe

C:\Program\Creative\Shared Files\Module Loader\DLLML.exe

C:\WINDOWS\CTHELPER.EXE

C:\WINDOWS\system32\CTXFIHLP.EXE

C:\Program\McAfee\MSK\MskAgent.exe

C:\Program\SiteAdvisor\6172\SiteAdv.exe

C:\Program\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe

C:\Program\QuickTime\qttask.exe

C:\Program\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe

C:\Program\Java\jre1.6.0_03\bin\jusched.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\WINDOWS\SYSTEM32\CTXFISPI.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program\Messenger\msmsgs.exe

C:\Program\DAEMON Tools\daemon.exe

C:\Program\SUPERAntiSpyware\SUPERAntiSpyware.exe

C:\Program\Delade filer\Teleca Shared\Generic.exe

C:\Program\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe

C:\WINDOWS\system32\svchost.exe

C:\Program\McAfee\MPS\mpsevh.exe

C:\Program\Lavasoft\Ad-Aware 2007\Ad-Aware2007.exe

C:\Program\Internet Explorer\iexplore.exe

C:\DOCUME~1\PerArne\LOKALA~1\Temp\OnlineScanner\Anti-Virus\fsgk32.exe

C:\DOCUME~1\PerArne\LOKALA~1\Temp\OnlineScanner\Anti-Virus\fssm32.exe

C:\WINDOWS\system32\wuauclt.exe

C:\HJT\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.blocket.se/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar

O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program\SiteAdvisor\6172\SiteAdv.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre1.6.0_03\bin\ssv.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program\mcafee\virusscan\scriptcl.dll

O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program\SiteAdvisor\6172\SiteAdv.dll

O4 - HKLM\..\Run: [CTDVDDET] 'C:\Program\Creative\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE'

O4 - HKLM\..\Run: [VolPanel] 'C:\Program\Creative\Sound Blaster X-Fi\Volume Panel\VolPanel.exe' /r

O4 - HKLM\..\Run: [AudioDrvEmulator] 'C:\Program\Creative\Shared Files\Module Loader\DLLML.exe' -1 AudioDrvEmulator 'C:\Program\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll'

O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE

O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE

O4 - HKLM\..\Run: [updReg] C:\WINDOWS\UpdReg.EXE

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [MskAgentexe] C:\Program\McAfee\MSK\MskAgent.exe

O4 - HKLM\..\Run: [siteAdvisor] C:\Program\SiteAdvisor\6172\SiteAdv.exe

O4 - HKLM\..\Run: [sony Ericsson PC Suite] 'C:\Program\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe' /startoptions

O4 - HKLM\..\Run: [QuickTime Task] 'C:\Program\QuickTime\qttask.exe' -atboottime

O4 - HKLM\..\Run: [Adobe Photo Downloader] 'C:\Program\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe'

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] 'C:\Program\Adobe\Reader 8.0\Reader\Reader_sl.exe'

O4 - HKLM\..\Run: [sunJavaUpdateSched] 'C:\Program\Java\jre1.6.0_03\bin\jusched.exe'

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [updateManager] 'C:\Program\Delade filer\Sonic\Update Manager\sgtray.exe' /r

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [MSMSGS] 'C:\Program\Messenger\msmsgs.exe' /background

O4 - HKCU\..\Run: [DAEMON Tools] 'C:\Program\DAEMON Tools\daemon.exe' -lang 1033

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program\SUPERAntiSpyware\SUPERAntiSpyware.exe

O8 - Extra context menu item: E&ampxportera till Microsoft Excel - res://C:\Program\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe

O11 - Options group: [iNTERNATIONAL] International*

O16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - http://support.f-secure.com/ols/fscax.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1189847549453

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1192807655125

O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program\SiteAdvisor\6172\SiteAdv.dll

O20 - Winlogon Notify: !SASWinLogon - C:\Program\SUPERAntiSpyware\SASWINLO.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program\Lavasoft\Ad-Aware 2007\aawservice.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe

O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\Program\DELADE~1\McAfee\EmProxy\emproxy.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program\Delade filer\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program\Delade filer\McAfee\HackerWatch\HWAPI.exe

O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\Program\McAfee\MSC\mcupdmgr.exe

O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program\McAfee\MSC\mcmscsvc.exe

O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program\delade filer\mcafee\mna\mcnasvc.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program\McAfee\VIRUSS~1\mcods.exe

O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\Program\McAfee\MSC\mcpromgr.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\program\DELADE~1\mcafee\mcproxy\mcproxy.exe

O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\program\DELADE~1\mcafee\redirsvc\redirsvc.exe

O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\Program\McAfee\VIRUSS~1\mcshield.exe

O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\Program\McAfee\VIRUSS~1\mcsysmon.exe

O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program\McAfee\MPF\MPFSrv.exe

O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\Program\McAfee\MPS\mps.exe

O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program\McAfee\MSK\MskSrver.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program\CyberLink\Shared files\RichVideo.exe (file missing)

O23 - Service: SiteAdvisor-tjänst (SiteAdvisor Service) - Unknown owner - C:\Program\SiteAdvisor\6172\SAService.exe

 

 

 

 

 

Link to comment
Share on other sites

Jag ser inget otrevligt i loggen. Har något program hittat något?

Däremot så kan det väl bli för mycket med att köra Ad-aware, McAfee-paket och SUPERAntiSpyware samtidigt.

 

Link to comment
Share on other sites

 

Hej Cecilia

 

Ad-Awere startar ju inte med Win eller?

 

Inte på min dator iaf!

 

McAfee vet jag inget om då jag inte har detta!

 

Men SUPERAntiSpyware har jag,och märker

inte att min dator är slö! Iof beror det väl på vad man har för Hårdvaror i burken!

 

Jag sitter med 3Gb i Dual i Ram minne!

 

Iof kunde väl Processorn bara lite bättre men än AMD Dual Core 5600 har jag!

 

Det man inte vet har man ingen aning om.

Teori och praktik förenas när ingenting fungerar och ingen vet varför

AMD AM25600 3,02Ghz,DDR2 2x1Gb+2x512Mb i Dual 800Mhz,s-ata2 400+160Gb+120Gb 2,5,Nvid PCIE 7600GT

 

Link to comment
Share on other sites

'Ad-Awere startar ju inte med Win eller?'

Betalversionerna gör det.

 

Din dator, Helren, är betydligt bättre än vad de flesta andra har.

 

Link to comment
Share on other sites

Hej

 

Dessa skulle jag ta bort från autostart!

 

O4 - HKLM\..\Run: [sony Ericsson PC Suite] 'C:\Program\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe' /startoptions

O4 - HKLM\..\Run: [QuickTime Task] 'C:\Program\QuickTime\qttask.exe' -atboottime

 

O4 - HKLM\..\Run: [sunJavaUpdateSched] 'C:\Program\Java\jre1.6.0_03

 

O4 - HKLM\..\Run: [Adobe Photo Downloader] 'C:\Program\Adobe\Photoshop

 

+ Adobe reader!

 

Så skulle kanske datorn bli LITE snabbare! Absolut inte slöare iaf!

 

Gå till Start--> KÖR --> skriv in msconfig -->Autostart och bocka av dessa!

 

Allt som börjar på 04 startar upp med Win = Tar kraft!

 

Det man inte vet har man ingen aning om.

Teori och praktik förenas när ingenting fungerar och ingen vet varför

AMD AM25600 3,02Ghz,DDR2 2x1Gb+2x512Mb i Dual 800Mhz,s-ata2 400+160Gb+120Gb 2,5,Nvid PCIE 7600GT

 

[inlägget ändrat 2007-10-26 09:49:09 av Helren]

[inlägget ändrat 2007-10-26 09:50:34 av Helren]

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.×
×
  • Create New...