Emla Skrevet 4. mai 2010 Del Skrevet 4. mai 2010 (endret) Har fått en Lenovo 3000 n200 med vista home basic fra min kamerats datter "i fanget". Vet ikke mye om historien, og diagnosen var: "Denne er syk". Kjørte Malwarebytes' Anti-Malware som fant, og fjernet en del "guff". Videre har jeg kjørt diverse onlinescannere uten å finne noe særlig spennende. Maskinen fremstår nå som ren. Windows update ser ut som installerte noe siste gang i juni 2009, og vil ikke laste ned/installere nå. Har forsøkt denne uten suksess Kan heller ikke oppdatere Superantispyware eller Microsoft Security Essentials (denne lot seg oppdatere en gang). Trenger altså hjelp: mbam-log-2010-04-29 (14-33-01).txt ComboFix.txt Endret 4. mai 2010 av Emla Lenke til kommentar
Axxxy Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 (endret) siden du har prøvd så mye og fortsatt ikke funnet svar på problemet ville jeg gjort noe annet. skaff deg en hardisk, og overfør alle filene inn der. (altså bilder, dokumenter,spill, film, musikk osv. ikke datafiler og programvare. det kan hende at problemet ligger der, og da overfører du bare problemet videre. så tar du en systemgjennoppretning (går tilbake til fabrikkinstillinene) og installerer hele vista på nytt. når du er ferdig med det, så overfører du alle bildene, filene, osv. tilbake til pc-en. da er pc-en ganske "gammel" så du må oppdatere den en del, men prøv å stopp oppdateringen ett vist punkt, slik at du unngår å oppdatere den samme feilen på nytt, (vist det er det som er problemet) Endret 5. mai 2010 av Axxxy Lenke til kommentar
norbat Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 Det er satt på en proxy som mest sannsynlig skaper probl. Åpne Kontrollpanel->Alternativer for internett->Tilkoblinger->LAN-innstillinger Fjern avmerkingen framfor "Bruk proxy-server....", sett merke framfor "Identifiser innstillinger automatisk". Restart pc Last ned Hijackthis. Installer og start programmet, velg "Do a system scan and save a logfile". Loggfilen kopierer du og poster. Lenke til kommentar
Emla Skrevet 5. mai 2010 Forfatter Del Skrevet 5. mai 2010 Det var ikke merket for proxy Har nå merket for "identifiser innstilinger automatisk" Logg: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:36:55, on 05.05.2010 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16851) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Windows\vsnp2uvc.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Lenovo\PM Driver\PMHandler.exe C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Windows\RtHDVCpl.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe C:\Program Files\Lenovo\LenovoCare\LPMGR.EXE C:\Program Files\Lenovo\AwayTask\AwaySch.EXE C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe C:\Program Files\Lenovo\Client Security Solution\cssauth.exe C:\Program Files\Microsoft Security Essentials\msseces.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe C:\Users\Eline\Desktop\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/home R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=localhost:7171 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local> R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Windows Live OneCare Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Tryggere for familien\fssbho.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: ThinkVantage Password Manager - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PMHandler] C:\PROGRA~1\Lenovo\PMDRIV~1\PMHandler.exe O4 - HKLM\..\Run: [TPWAUDAP] C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe O4 - HKLM\..\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O8 - Extra context menu item: &Windows Live Search - res://c:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Send bilde til &Bluetooth-enhet... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Send side til &Bluetooth-enhet... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm O9 - Extra button: (no name) - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O9 - Extra 'Tools' menuitem: ThinkVantage Password Manager... - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onecare.live.com/resource/download/scanner/nb-no/wlscctrl2.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-tjeneste (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Fn+F5 Service (FNF5SVC) - Lenovo. - C:\Program Files\LENOVO\HOTKEY\FNF5SVC.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\Windows\system32\IPSSVC.EXE O23 - Service: PMSveH - Lenovo - C:\Program Files\Lenovo\PM Driver\PMSveH.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program files\lenovo\system update\suservice.exe O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe O23 - Service: Visning på skjermen (TPHKSVC) - Unknown owner - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe O23 - Service: TSS Core Service (TSSCoreService) - IBM - C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe -- End of file - 10177 bytes Lenke til kommentar
norbat Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 Start HJT, velg "Do a system scan only", sett merke framfor følgende linje og klikk 'Fix Checked': R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=localhost:7171 Restart pc og sjekk om det fortsatt er probl. Lenke til kommentar
raWrz Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 (endret) Norbat var før meg .. Endret 5. mai 2010 av Submit Lenke til kommentar
Emla Skrevet 5. mai 2010 Forfatter Del Skrevet 5. mai 2010 Har fulgt Norbats oppskrift, men ingen forskjell dessverre.... Lenke til kommentar
Emla Skrevet 5. mai 2010 Forfatter Del Skrevet 5. mai 2010 Ny logg: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:28:24, on 05.05.2010 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16851) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\vsnp2uvc.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\mobsync.exe C:\Program Files\Lenovo\PM Driver\PMHandler.exe C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Windows\RtHDVCpl.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe C:\Program Files\Lenovo\LenovoCare\LPMGR.EXE C:\Program Files\Lenovo\AwayTask\AwaySch.EXE C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe C:\Program Files\Lenovo\Client Security Solution\cssauth.exe C:\Program Files\Microsoft Security Essentials\msseces.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Opera\opera.exe C:\Users\Eline\Desktop\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/home R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local> R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Windows Live OneCare Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Tryggere for familien\fssbho.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: ThinkVantage Password Manager - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PMHandler] C:\PROGRA~1\Lenovo\PMDRIV~1\PMHandler.exe O4 - HKLM\..\Run: [TPWAUDAP] C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe O4 - HKLM\..\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O8 - Extra context menu item: &Windows Live Search - res://c:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Send bilde til &Bluetooth-enhet... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Send side til &Bluetooth-enhet... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm O9 - Extra button: (no name) - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O9 - Extra 'Tools' menuitem: ThinkVantage Password Manager... - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onecare.live.com/resource/download/scanner/nb-no/wlscctrl2.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-tjeneste (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Fn+F5 Service (FNF5SVC) - Lenovo. - C:\Program Files\LENOVO\HOTKEY\FNF5SVC.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\Windows\system32\IPSSVC.EXE O23 - Service: PMSveH - Lenovo - C:\Program Files\Lenovo\PM Driver\PMSveH.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program files\lenovo\system update\suservice.exe O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe O23 - Service: Visning på skjermen (TPHKSVC) - Unknown owner - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe O23 - Service: TSS Core Service (TSSCoreService) - IBM - C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe -- End of file - 9978 bytes Hm... kanskje jeg fikk til spoiler også? Lenke til kommentar
norbat Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 Skriv cmd i søk/kjør-feltet, velg å kjøre cmd.exe som administrator. Fra ledetekst skriv følgende, klikk Enter: netsh winsock reset Restart pc og sjekk om det fortsatt er probl. Lenke til kommentar
Emla Skrevet 5. mai 2010 Forfatter Del Skrevet 5. mai 2010 Hjalp ikke det heller... Lenke til kommentar
norbat Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 Sjekk om hosts-fila di ser normal ut. Du finner den på: C:\Windows\System32\Drivers\etc Hvis den er normal, prøv følgende i cmd (klikk Enter etter hver linje): netsh winsock reset catalog netsh int ip reset Hvis dette heller ikke hjelper, post en ny combofixlogg Lenke til kommentar
Emla Skrevet 5. mai 2010 Forfatter Del Skrevet 5. mai 2010 Eh...usikker på "ser normal ut"? Lenke til kommentar
Axxxy Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 Prøv å gjør det jeg sa, funker altid for meg :!: så slipper du å bruke tiden på å finne ut av slike problemer. Lenke til kommentar
norbat Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 En normal hostsfil i vista har gjerne to oppføringer (hvis du ser bort fra det som står etter # merkene): 127.0.0.1 ::1 Lenke til kommentar
Emla Skrevet 5. mai 2010 Forfatter Del Skrevet 5. mai 2010 Den ser sånn ut: 127.0.0.1 localhost Lenke til kommentar
norbat Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 Ok, gjør det andre som er nevnt over. Lenke til kommentar
Emla Skrevet 5. mai 2010 Forfatter Del Skrevet 5. mai 2010 Hjalp ikke det heller (sukk) Ny Combofixlogg: ComboFix 10-05-03.05 - Eline 05.05.2010 21:47:25.3.1 - x86 Microsoft® Windows Vista™ Home Basic 6.0.6000.0.1252.47.1044.18.3062.2014 [GMT 2:00] Kjører fra: c:\users\Eline\Desktop\ComboFix.exe AV: Microsoft Security Essentials *On-access scanning enabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDF} SP: Microsoft Security Essentials *enabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDE} SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9} SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7} SP: Windows Defender *disabled* (Outdated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . ((((((((((((((((((((((((((( Filer Opprettet Fra 2010-04-05 til 2010-05-05 ))))))))))))))))))))))))))))))))) . 2010-05-05 19:55 . 2010-05-05 19:55 -------- d-----w- c:\users\Eline\AppData\Local\temp 2010-05-05 19:55 . 2010-05-05 19:55 -------- d-----w- c:\users\Public\AppData\Local\temp 2010-05-05 19:55 . 2010-05-05 19:55 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-05-05 16:53 . 2010-05-05 16:53 63488 ----a-w- c:\users\Eline\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll 2010-05-05 16:35 . 2010-05-05 16:35 388096 ----a-r- c:\users\Eline\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-05-05 16:35 . 2010-05-05 16:35 -------- d-----w- c:\program files\Trend Micro 2010-05-04 19:54 . 2010-05-04 19:54 -------- d-----w- c:\users\Eline\AppData\Roaming\ZoomBrowser EX 2010-05-04 19:31 . 2010-05-04 19:31 -------- d-----w- c:\users\Eline\AppData\Roaming\Tracker Software 2010-05-04 19:29 . 2010-05-04 19:29 -------- d-----w- c:\program files\Tracker Software 2010-05-04 18:59 . 2010-05-05 19:06 1 ----a-w- c:\users\Eline\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2010-05-04 18:59 . 2010-05-04 18:59 -------- d-----w- c:\users\Eline\AppData\Roaming\OpenOffice.org 2010-05-04 18:54 . 2010-05-04 18:54 -------- d-----w- c:\program files\JRE 2010-05-04 18:53 . 2010-05-04 18:54 -------- d-----w- c:\program files\OpenOffice.org 3 2010-05-04 17:53 . 2010-05-04 17:53 -------- d-----w- c:\programdata\TaskMgr 2010-05-04 17:42 . 2010-05-04 17:42 -------- d-----w- c:\users\Eline\AppData\Local\Seven Zip 2010-05-04 16:48 . 2010-05-04 16:48 -------- d-----w- c:\program files\Secunia 2010-05-04 12:53 . 2010-05-04 12:53 -------- d-----w- c:\program files\Microsoft Security Essentials 2010-05-04 11:03 . 2010-05-04 11:03 52224 ----a-w- c:\users\Eline\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll 2010-05-04 11:03 . 2010-05-05 16:53 117760 ----a-w- c:\users\Eline\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL 2010-05-04 11:02 . 2010-05-04 11:02 -------- d-----w- c:\programdata\SUPERAntiSpyware.com 2010-05-04 11:02 . 2010-05-04 11:02 -------- d-----w- c:\program files\SUPERAntiSpyware 2010-05-04 11:02 . 2010-05-04 11:02 -------- d-----w- c:\users\Eline\AppData\Roaming\SUPERAntiSpyware.com 2010-05-04 11:01 . 2010-05-04 11:01 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard 2010-05-03 20:14 . 2010-05-03 20:14 6153352 ----a-w- c:\programdata\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2010-05-03 16:35 . 2010-05-03 16:35 -------- d-----w- c:\windows\Sun 2010-05-03 13:39 . 2010-05-04 17:50 -------- d-----w- c:\program files\Panda Security 2010-05-03 13:35 . 2010-05-03 13:35 -------- d-----w- c:\program files\Windows Live Safety Center 2010-04-30 10:56 . 2010-04-30 10:56 -------- d-----w- c:\program files\AVG 2010-04-30 10:10 . 2010-04-30 10:10 -------- d-----w- c:\programdata\F-Secure 2010-04-30 09:44 . 2010-04-30 09:44 411368 ----a-w- c:\windows\system32\deployJava1.dll 2010-04-29 16:03 . 2009-05-18 11:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys 2010-04-29 16:03 . 2008-04-17 10:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll 2010-04-29 16:02 . 2010-04-29 16:02 -------- d-----w- c:\program files\iPod 2010-04-29 16:02 . 2010-04-29 16:03 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521} 2010-04-29 16:02 . 2010-04-29 16:03 -------- d-----w- c:\program files\iTunes 2010-04-29 16:00 . 2010-04-29 16:00 -------- d-----w- c:\program files\QuickTime 2010-04-29 15:54 . 2010-04-29 15:54 -------- d-----w- c:\program files\Bonjour 2010-04-29 15:42 . 2010-04-29 15:42 73000 ----a-w- c:\programdata\Apple Computer\Installer Cache\iTunes 9.1.1.12\SetupAdmin.exe 2010-04-29 15:21 . 2010-04-29 15:21 79144 ----a-w- c:\programdata\Apple Computer\Installer Cache\Safari 5.31.22.7\SetupAdmin.exe 2010-04-29 12:35 . 2010-04-29 12:35 1732 ----a-w- C:\tvtpktfilter.dat 2010-04-29 12:21 . 2010-04-29 12:21 -------- d-----w- c:\users\Eline\AppData\Roaming\Malwarebytes 2010-04-29 12:19 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-04-29 12:19 . 2010-04-29 12:19 -------- d-----w- c:\programdata\Malwarebytes 2010-04-29 12:19 . 2010-05-03 20:18 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-04-29 12:19 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-04-26 21:18 . 2010-05-05 19:39 44544 ----a-w- c:\windows\system32\agremove.exe 2010-04-16 06:33 . 2010-04-16 06:33 41472 ----a-w- c:\windows\system32\drivers\usbaapl.sys 2010-04-16 06:33 . 2010-04-16 06:33 3003680 ----a-w- c:\windows\system32\usbaaplrc.dll 2010-04-08 11:20 . 2010-04-08 11:20 91424 ----a-w- c:\windows\system32\dnssd.dll 2010-04-08 11:20 . 2010-04-08 11:20 107808 ----a-w- c:\windows\system32\dns-sd.exe . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-05-05 19:34 . 2008-03-04 22:17 2484 ----a-w- c:\windows\bthservsdp.dat 2010-05-04 19:49 . 2008-04-10 12:11 105992 ----a-w- c:\users\Eline\AppData\Local\GDIPFONTCACHEV1.DAT 2010-05-04 19:07 . 2008-07-10 18:07 -------- d-----w- c:\program files\Common Files\Adobe 2010-05-04 18:53 . 2008-09-04 12:34 -------- d-----w- c:\program files\OpenOffice.org 2.4 2010-05-04 18:39 . 2008-04-10 12:07 7000 ----a-w- c:\users\Eline\AppData\Local\d3d9caps.dat 2010-05-04 18:15 . 2008-04-10 13:13 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2010-05-04 18:03 . 2008-03-04 23:03 -------- d-----w- c:\programdata\Corel 2010-05-04 18:02 . 2008-03-04 23:03 -------- d-----w- c:\programdata\Borland 2010-05-04 17:57 . 2008-03-04 23:05 -------- d-----w- c:\program files\Corel 2010-05-04 17:53 . 2008-04-11 16:35 -------- d-----w- c:\users\Eline\AppData\Roaming\Corel 2010-05-04 17:53 . 2008-04-11 16:35 5642 --sha-w- c:\windows\system32\KGyGaAvL.sys 2010-05-04 17:53 . 2008-04-11 16:35 88 --sh--r- c:\windows\system32\D3DCCF7427.sys 2010-05-04 17:48 . 2008-03-04 23:35 -------- d-----w- c:\program files\Microsoft.NET 2010-05-04 17:48 . 2008-03-05 06:44 83764 ----a-w- c:\windows\system32\perfc014.dat 2010-05-04 17:48 . 2008-03-05 06:44 485052 ----a-w- c:\windows\system32\perfh014.dat 2010-05-04 17:38 . 2008-03-04 23:32 -------- d-----w- c:\programdata\Microsoft Help 2010-05-04 17:36 . 2006-11-02 12:35 -------- d-----w- c:\program files\MSBuild 2010-05-04 17:10 . 2008-03-04 23:00 -------- d-----w- c:\program files\Java 2010-05-04 16:40 . 2008-06-02 20:36 1 ----a-w- c:\users\Eline\AppData\Roaming\OpenOffice.org2\user\uno_packages\cache\stamp.sys 2010-05-04 16:40 . 2008-06-02 20:35 -------- d-----w- c:\users\Eline\AppData\Roaming\OpenOffice.org2 2010-05-04 16:35 . 2009-01-28 18:13 -------- d-----w- c:\users\Eline\AppData\Roaming\Azureus 2010-05-03 22:07 . 2008-04-10 13:13 -------- d-----w- c:\program files\Spybot - Search & Destroy 2010-05-03 12:37 . 2008-04-10 13:05 -------- d-----w- c:\program files\Opera 2010-04-30 09:45 . 2008-03-04 23:00 -------- d-----w- c:\program files\Common Files\Java 2010-04-29 19:11 . 2008-05-21 19:10 -------- d-----w- c:\programdata\Apple 2010-04-29 16:02 . 2008-05-21 19:10 -------- d-----w- c:\program files\Common Files\Apple 2010-04-29 15:31 . 2009-04-20 19:08 -------- d-----w- c:\program files\Safari 2010-04-29 13:31 . 2008-04-10 13:04 -------- d-----w- c:\program files\CCleaner 2010-04-22 10:13 . 2009-05-15 08:51 -------- d-----w- c:\users\Eline\AppData\Roaming\Spotify 2008-03-05 07:04 . 2008-03-05 06:52 8192 --sh--w- c:\windows\Users\Default\NTUSER.DAT . ((((((((((((((((((((((((((((( SnapShot@2010-05-04_20.21.35 ))))))))))))))))))))))))))))))))))))))))) . + 2008-03-04 22:39 . 2010-05-05 19:39 61052 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin + 2006-11-02 13:02 . 2010-05-05 19:39 74162 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin + 2008-04-10 12:09 . 2010-05-05 19:39 10428 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3923600923-3216718401-2720486529-1003_UserData.bin + 2008-04-10 12:10 . 2010-05-05 19:35 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2008-04-10 12:10 . 2010-05-04 18:35 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2008-04-10 12:10 . 2010-05-05 19:35 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2008-04-10 12:10 . 2010-05-04 18:35 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2010-05-05 19:35 . 2010-05-05 19:35 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2010-05-04 18:35 . 2010-05-04 18:35 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2010-05-05 19:35 . 2010-05-05 19:35 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2010-05-04 18:35 . 2010-05-04 18:35 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2006-11-02 12:44 . 2010-05-04 20:29 401208 c:\windows\System32\FNTCACHE.DAT - 2008-04-10 12:10 . 2010-05-04 18:35 147456 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2008-04-10 12:10 . 2010-05-05 19:35 147456 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2006-11-02 10:22 . 2010-05-04 18:57 6291456 c:\windows\System32\SMI\Store\Machine\SCHEMA.DAT + 2006-11-02 10:22 . 2010-05-04 20:27 6291456 c:\windows\System32\SMI\Store\Machine\SCHEMA.DAT + 2010-05-05 16:35 . 2010-05-05 16:35 1094656 c:\windows\Installer\acf23.msi . (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret ))))))))))))))))))))))))))))))))))))))))))))) . . *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184] "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2010-04-27 2020592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "snp2uvc"="c:\windows\vsnp2uvc.exe" [2006-12-28 569344] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-10-23 815104] "PMHandler"="c:\progra~1\Lenovo\PMDRIV~1\PMHandler.exe" [2007-06-05 34352] "TPWAUDAP"="c:\program files\Lenovo\HOTKEY\TpWAudAp.exe" [2006-09-06 54824] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-02-12 174872] "RtHDVCpl"="RtHDVCpl.exe" [2007-03-23 4423680] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-05-04 142104] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-05-04 154392] "Persistence"="c:\windows\system32\igfxpers.exe" [2007-05-04 138008] "TVT Scheduler Proxy"="c:\program files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe" [2008-03-04 487424] "LPManager"="c:\progra~1\Lenovo\LENOVO~2\LPMGR.exe" [2007-04-26 120368] "AwaySch"="c:\program files\Lenovo\AwayTask\AwaySch.EXE" [2006-11-07 91688] "AMSG"="c:\program files\ThinkVantage\AMSG\Amsg.exe" [2007-02-01 439856] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040] "ACTray"="c:\program files\ThinkPad\ConnectUtilities\ACTray.exe" [2007-07-05 419112] "ACWLIcon"="c:\program files\ThinkPad\ConnectUtilities\ACWLIcon.exe" [2007-07-05 124200] "cssauth"="c:\program files\Lenovo\Client Security Solution\cssauth.exe" [2007-08-09 2630968] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-04-29 1090952] "AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-04-13 47392] "MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-02-21 1093208] [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] 2009-09-03 13:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer2"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^BTTray.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk backup=c:\windows\pss\BTTray.lnk.CommonStartup backupExtension=.CommonStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FingerPrintSoftware] c:\program files\Lenovo Fingerprint Software\fpapp.exe \s [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CameraApplicationLauncher] 2007-08-22 16:26 16384 ------w- c:\program files\Lenovo\Camera Center\bin\CameraApplicationLaunchPadLauncher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fssui] 2007-12-17 09:12 243240 ------w- c:\program files\Windows Live\Tryggere for familien\fssui.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2010-04-28 13:06 142120 ----a-w- c:\program files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut] 2006-12-05 21:55 54832 ------w- c:\program files\Lenovo Multimedia Center\PowerDVD\Language\Language.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2010-03-17 19:53 421888 ----a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl] 2006-11-23 14:10 56928 ------w- c:\program files\Lenovo Multimedia Center\PowerDVD\PDVDServ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPFNF7] 2007-04-09 18:03 58416 ------w- c:\program files\Lenovo\NPDIRECT\tpfnf7sp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] 2008-03-05 06:49 1006264 ------w- c:\program files\Windows Defender\MSASCui.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG] 2006-11-02 12:34 201728 ------w- c:\program files\Windows Media Player\wmpnscfg.exe R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [2009-06-17 12648] S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiif32.sys [2006-08-30 13744] S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872] S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2010-04-27 61440] S2 FNF5SVC;Fn+F5 Service;c:\program files\LENOVO\HOTKEY\FNF5SVC.exe [2007-04-09 54832] S2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] S2 TPHKSVC;Visning på skjermen;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [2007-03-02 55936] S2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\Lenovo\Rescue and Recovery\rrpservice.exe [2007-01-08 569344] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2007-02-08 179712] S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2009-12-02 42368] S3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\DRIVERS\Tvti2c.sys [2007-05-22 30336] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc bthsvcs REG_MULTI_SZ BthServ . Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver) 2010-05-05 c:\windows\Tasks\Se etter oppdateringer for Windows Live Toolbar.job - c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-02-12 13:54] . . ------- Tilleggsskanning ------- . uStart Page = hxxp://search.babylon.com/home uInternet Settings,ProxyOverride = *.local;<local> IE: &Windows Live Search - c:\program files\Windows Live Toolbar\msntb.dll/search.htm IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Send bilde til &Bluetooth-enhet... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm IE: Send side til &Bluetooth-enhet... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-05-05 21:55 Windows 6.0.6000 NTFS skanner skjulte prosesser ... skanner skjulte autostart-oppføringer ... skanner skjulte filer ... skanning vellykket skjulte filer: 0 ************************************************************************** . --------------------- LÅSTE REGISTERNØKLER --------------------- [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Tidspunkt ferdig: 2010-05-05 21:59:03 ComboFix-quarantined-files.txt 2010-05-05 19:59 Pre-Run: 16 613 490 688 byte ledig Post-Run: 16 572 661 760 byte ledig - - End Of File - - 43A75F19780077EDE752EF9D77F85F92 Lenke til kommentar
norbat Skrevet 5. mai 2010 Del Skrevet 5. mai 2010 Prøv og reinstaller SAS og se om du fortsatt får oppdateringsprobl. Fungerer ellers alt normalt? Lenke til kommentar
Emla Skrevet 5. mai 2010 Forfatter Del Skrevet 5. mai 2010 (endret) Kan nå oppdatere SAS, men fortsatt ikke MSE (fikk det til en gang) eller Windows. Forøvrig virker det ganske så normalt. EDIT: Windows update gir feilmelding 80072 EFD Endret 5. mai 2010 av Emla Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå