[g3rtlush]

nylig min Laptop har som kjører sakte, og det tar aldre å starte opp. Ikke bare det, men lyden whne jeg prøver å spille av musikk har gått veldig merkelig, all nervøs og også når jeg prøver å spille av en DVD-videoen er nervøs.

Jeg har Logger filer fra Hijack dette Malwarebytes og SUPERantispyware

[evilfantasy]

Post loggene takk.

[g3rtlush]

Her er mitt Loggfiler for SuperAntiSpyware, Malwarebytes og kapre denne

Malwarebytes' Anti-Malware 1.30
Database versjon: 1306
Windows 5.1.2600 Service Pack 2

04/11/2008 21:30:01
mbam-log-2008-11-04 (21-30-01). txt

Scan type: Quick Scan
Objekter skannet: 44156
Tid brukt: 13 minutt (er), 7 sekund (er)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registernøkler Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(Ingen skadelige eks oppdaget)

Memory Modules Infected:
(Ingen skadelige eks oppdaget)

Registernøkler Infected:
(Ingen skadelige eks oppdaget)

Registry Values Infected:
(Ingen skadelige eks oppdaget)

Registry Data Items Infected:
(Ingen skadelige eks oppdaget)

Folders Infected:
(Ingen skadelige eks oppdaget)

Files Infected:
(Ingen skadelige eks oppdaget)


Logfile of Trend Micro HijackThis v2.0.2
Scan lagret 22:40:44, on 04/11/2008
Plattform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18241)
Boot mode: Normal

Kjører prosesser:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ Winlogon.exe
C: \ WINDOWS \ system32 \ Services.exe
C: \ WINDOWS \ system32 \ Lsass.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ Programfiler \ Windows Defender \ MsMpEng.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ Programfiler \ Intel \ Wireless \ Bin \ EvtEng.exe
C: \ Programfiler \ Intel \ Wireless \ Bin \ S24EvMon.exe
C: \ WINDOWS \ system32 \ LEXBCES.EXE
C: \ WINDOWS \ Explorer.exe
C: \ WINDOWS \ system32 \ Spoolsv.exe
C: \ WINDOWS \ system32 \ LEXPPS.EXE
C: \ Programfiler \ Avira \ AntiVir PersonalEdition Classic \ sched.exe
C: \ Programfiler \ Avira \ AntiVir PersonalEdition Classic \ avguard.exe
C: \ Programfiler \ Java \ jre6 \ bin \ jqs.exe
C: \ Programfiler \ Intel \ Wireless \ Bin \ RegSrvc.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ Program Files \ Sony \ VAIO Event Service \ VESMgr.exe
C: \ Programfiler \ Apoint \ Apoint.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ Program Files \ Sony \ VAIO Strømstyring \ SPMgr.exe
C: \ Program Files \ Sony \ VAIO Update 2 \ VAIOUpdt.exe
C: \ Programfiler \ Utimaco \ ivareta PrivateDisk \ pdservice.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ Programfiler \ Apoint \ Apntex.exe
C: \ Programfiler \ iTunes \ iTunesHelper.exe
C: \ Program Files \ Lexmark 1200 Series \ lxczbmgr.exe
C: \ Programfiler \ Avira \ AntiVir PersonalEdition Classic \ avgnt.exe
C: \ Programfiler \ Windows Defender \ MSASCui.exe
C: \ Programfiler \ Java \ jre6 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ Ctfmon.exe
C: \ Program Files \ Lexmark 1200 Series \ lxczbmon.exe
C: \ Programfiler \ DNA \ btdna.exe
C: \ Programfiler \ iPod \ bin \ iPodService.exe
C: \ Programfiler \ Internet Explorer \ iexplore.exe
C: \ Programfiler \ Internet Explorer \ iexplore.exe
C: \ Programfiler \ Trend Micro \ HijackThis \ HijackThis.exe
C: \ Programfiler \ Malwarebytes' Anti-Malware \ mbam.exe
C: \ Programfiler \ SUPERAntiSpyware \ SUPERAntiSpyware.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Programfiler \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Java (tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Programfiler \ Java \ jre6 \ bin \ ssv.dll
O2 - BHO: GoogleAFE - (CA6319C0-31B7-401E-A518-A07C3DB8F777) - c: \ progra ~ 1 \ GOOGLE ~ 1 \ GoogleAFE.dll
O2 - BHO: Java (tm) Plug-in 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Programfiler \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Programfiler \ Java \ jre6 \ lib \ distribuere \ jqs \ ie \ jqs_plugin.dll
O4 - HKLM \ .. \ Run: [Apoint] C: \ Programfiler \ Apoint \ Apoint.exe
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [SonyPowerCfg] C: \ Program Files \ Sony \ VAIO Strømstyring \ SPMgr.exe
O4 - HKLM \ .. \ Run: [ISBMgr.exe] C: \ Program Files \ Sony \ ISB Utility \ ISBMgr.exe
O4 - HKLM \ .. \ Run: [VAIO Update 2] "C: \ Program Files \ Sony \ VAIO Update 2 \ VAIOUpdt.exe" / Stasjonære
O4 - HKLM \ .. \ Run: [PDService.exe] C: \ Programfiler \ Utimaco \ ivareta PrivateDisk \ pdservice.exe
O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM \ .. \ Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM \ .. \ Run: [AzMixerSel] C: \ Programfiler \ Realtek \ InstallShield \ AzMixerSel.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Programfiler \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Programfiler \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [Lexmark 1200 Series] "C: \ Program Files \ Lexmark 1200 Series \ lxczbmgr.exe"
O4 - HKLM \ .. \ Run: [avgnt] "C: \ Programfiler \ Avira \ AntiVir PersonalEdition Classic \ avgnt.exe" / min
O4 - HKLM \ .. \ Run: [Windows Defender] "C: \ Programfiler \ Windows Defender \ MSASCui.exe"-hide
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Programfiler \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [BitTorrent DNA] "C: \ Programfiler \ DNA \ btdna.exe"
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'NETWORK SERVICE')
O4 - HKUS \ S-1-5-18 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'SYSTEM')
O4 - HKUS \. DEFAULT \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Default user')
O8 - Extra sammenheng menyelement: E & ksporter til Microsoft Excel - res: / / c: \ progra ~ 1 \ micros ~ 4 \ Office11 \ EXCEL.EXE/3000
O9 - Extra knappen: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ progra ~ 1 \ micros ~ 4 \ Office11 \ REFIEBAR.DLL
O9 - Extra knappen: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Programfiler \ Messenger \ msmsgs.exe
O9 - Extra "Verktøy" MENUITEM: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Programfiler \ Messenger \ msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL = http://www.club-vaio.com/en/
O16 - DPF: (56762DEC-6B0D-4AB4-A8AD-989993B5D08B) (OnlineScanner Control) -- http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl klasse) -- http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1225049667890
O20 - Winlogon Notify:! SASWinLogon - C: \ Programfiler \ SUPERAntiSpyware \ SASWINLO.dll
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C: \ Programfiler \ Avira \ AntiVir PersonalEdition Classic \ sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C: \ Programfiler \ Avira \ AntiVir PersonalEdition Classic \ avguard.exe
O23 - Service: EvtEng - Intel Corporation - C: \ Programfiler \ Intel \ Wireless \ Bin \ EvtEng.exe
O23 - Service: Image Converter videoinnspillingen overvåke VAIO Underholdning - Sony Corporation - C: \ Program Files \ Sony \ Image Converter 2 \ IcVzMon.exe
O23 - Service: iPod Service - Apple Inc. - C: \ Programfiler \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C: \ Programfiler \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C: \ WINDOWS \ system32 \ LEXBCES.EXE
O23 - Service: MSCSPTISRV - Sony Corporation - C: \ Programfiler \ Fellesfiler \ Sony Shared \ AVLib \ MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C: \ Programfiler \ Fellesfiler \ Sony Shared \ AVLib \ PACSPTISVR.exe
O23 - Service: RegSrvc - Intel Corporation - C: \ Programfiler \ Intel \ Wireless \ Bin \ RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C: \ Programfiler \ Intel \ Wireless \ Bin \ S24EvMon.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C: \ Programfiler \ Fellesfiler \ Sony Shared \ AVLib \ SPTISRV.exe
O23 - Service: VAIO Event Service - Sony Corporation - C: \ Program Files \ Sony \ VAIO Event Service \ VESMgr.exe
O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C: \ Program Files \ Sony \ VAIO samarbeidet Initialisation \ VCI_SVC.exe

--
End of file - 7628 bytes


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 11/04/2008 at 06:09

Application Version: 4.21.1004

Core Rules Database Version: 3622
Trace Rules Database Version: 1606

Scan type: Complete Scan
Total Scan Time: 06:14:50

Minne eks skannet: 396
Minne trusler oppdages: 0
Registerelementene skannet: 4699
Registerverdi trusler oppdages: 0
Fil eks skannet: 37598
Fil trusler oppdages: 0

[evilfantasy]

Høyst sannsynlig er dette en malware problemet. Du kan prøve å legges inn i Windows-forumet.

Det er noen ting vi kan gjøre her.

StartupLite

• Laste ned StartupLite ved MalwareBytes til skrivebordet ditt.
• DoubleClick StartupLite.exe å starte programmet.
• Sikre Deaktivere merket.
• Klikk Fortsett.
• En pop-up meldingen vil fortelle deg det unødvendig oppstartselementer i listen din er deaktivert, og ber deg om å starte datamaskinen på nytt.
• Re-starter datamaskinen.

----------

Laste ned Deaktiver / Fjern Windows Messenger på skrivebordet for å fjerne Windows Messenger.

Må ikke forveksles Windows Messenger med MSN Messenger fordi de ikke er det samme. Windows Messenger er en hyppig årsak til popups.

Unzip filen på skrivebordet. Åpne MessengerDisable.exe og velg den nederste boksen -- Avinstallere Windows Messenger og klikk Søke.

Avslutt ut av MessengerDisable deretter slette to filer som ble satt på skrivebordet.

Kjør CCleaner.

Lag et nytt tema i Windows-forumet.

[Hybr! D]

Hold deg til en tråd for øyeblikket utelukke malware deretter gå videre, ellers blir det bare forvirrende ting. Takk.

[g3rtlush]

Sound, var akkurat det som anbefales.

Utført av malware ting så tror jeg så hva mitt neste rute?

[Hybr! D]

Whoops, meg dårlig, ikke realisere evilfantasy hadde reagert, kan du fortsette å poste i Windows forumet.