chucky1962
Gewaardeerd
- Lid geworden
- 9 okt 2009
- Berichten
- 1.293
- Waarderingsscore
- 0
mijn pc is traag misschien dat er iets te vinden is.
[hjt]
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:01:56, on 17-6-2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
c:\windows\system32\smss.exe
c:\windows\system32\winlogon.exe
c:\windows\system32\services.exe
c:\windows\system32\lsass.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\program files\alwil software\avast5\avastsvc.exe
c:\windows\explorer.exe
c:\windows\system32\spoolsv.exe
c:\windows\system32\svchost.exe
c:\program files\java\jre6\bin\jqs.exe
c:\program files\google\update\googleupdate.exe
c:\program files\common files\logishrd\lvcomser\lvcomser.exe
c:\program files\common files\logishrd\lcommgr\communications_helper.exe
c:\program files\common files\logishrd\lvmvfm\lvprcsrv.exe
c:\program files\logitech\quickcam\quickcam.exe
c:\windows\system32\rundll32.exe
c:\program files\nero\nero8\nero backitup\nbservice.exe
c:\program files\hp\hp software update\hpwuschd2.exe
c:\program files\alwil software\avast5\avastui.exe
c:\program files\common files\java\java update\jusched.exe
c:\program files\logitech\desktop messenger\8876480\program\backweb-8876480.exe
c:\program files\common files\nero\lib\nmindexstoresvr.exe
c:\windows\system32\svchost.exe
c:\windows\system32\ioctlsvc.exe
c:\windows\system32\svchost.exe
c:\program files\auslogics\auslogics disk defrag\diskdefrag.exe
c:\program files\microsoft\search enhancement pack\seaport\seaport.exe
c:\windows\system32\ctfmon.exe
o:\programma's\alcohol 120\alcohol 120\starwind\starwindservice.exe
c:\windows\system32\svchost.exe
c:\program files\tuneup utilities 2011\tuneuputilitiesservice32.exe
c:\program files\hp\digital imaging\bin\hpqtra08.exe
c:\windows\system32\uaservice7.exe
c:\program files\logitech\setpoint\setpoint.exe
c:\program files\openoffice.org 3\program\soffice.exe
c:\program files\common files\logishrd\lqcvfx\cocimanager.exe
c:\program files\openoffice.org 3\program\soffice.bin
c:\program files\malwarebytes' anti-malware\mbam.exe
c:\program files\common files\logishrd\khal2\khalmnpr.exe
c:\program files\tuneup utilities 2011\tuneuputilitiesapp32.exe
c:\program files\common files\logishrd\lvcomser\lvcomser.exe
c:\program files\common files\nero\lib\nmindexingservice.exe
c:\program files\windows live\messenger\msnmsgr.exe
c:\program files\windows live\contacts\wlcomm.exe
c:\program files\trend micro\hijackthis\hijackthis.exe
r0 - hkcu\software\microsoft\internet explorer\main,start page = [noparse]http://www.ziggo.nl/[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_page_url = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_search_url = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hklm\software\microsoft\internet explorer\search,searchassistant = [noparse]http://search.babylon.com/?babsrc=sp_ss&q={searchterms}&mntrid=8c6fd113000000000000002215cf2062&tlver=1.4.19.19&affid=17160[/noparse]
r1 - hkcu\software\microsoft\windows\currentversion\internet settings,proxyoverride = localhost
o2 - bho: acroiehelperstub - {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
o2 - bho: search helper - {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\searchhelper.dll
o2 - bho: windows live aanmelden - help - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: java(tm) plug-in 2 ssv helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
o2 - bho: windows live toolbar helper - {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
o2 - bho: jqsiestartdetectorimpl - {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
o3 - toolbar: &windows live toolbar - {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
o3 - toolbar: (no name) - {10edb994-47f8-43f7-ae96-f2ea63e9f90f} - (no file)
o4 - hklm\..\run: [zbrowser launcher] c:\program files\logitech\itouch\itouch.exe
o4 - hklm\..\run: [logitechcommunicationsmanager] c:\program files\common files\logishrd\lcommgr\communications_helper.exe
o4 - hklm\..\run: [logitechquickcamribbon] c:\program files\logitech\quickcam\quickcam.exe /hide
o4 - hklm\..\run: [bluetoothauthenticationagent] rundll32.exe bthprops.cpl,,bluetoothauthenticationagent
o4 - hklm\..\run: [nbkeyscan] c:\program files\nero\nero8\nero backitup\nbkeyscan.exe
o4 - hklm\..\run: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install
o4 - hklm\..\run: [hp software update] c:\program files\hp\hp software update\hpwuschd2.exe
o4 - hklm\..\run: [kernel and hardware abstraction layer] khalmnpr.exe
o4 - hklm\..\run: [nvcpldaemon] rundll32.exe c:\windows\system32\nvcpl.dll,nvstartup
o4 - hklm\..\run: [adobe reader speed launcher] c:\program files\adobe\reader 9.0\reader\reader_sl.exe
o4 - hklm\..\run: [adobe arm] c:\program files\common files\adobe\arm\1.0\adobearm.exe
o4 - hklm\..\run: [avast5] c:\program files\alwil software\avast5\avastui.exe /nogui
o4 - hklm\..\run: [sunjavaupdatesched] c:\program files\common files\java\java update\jusched.exe
o4 - hkcu\..\run: [ldm] c:\program files\logitech\desktop messenger\8876480\program\backweb-8876480.exe
o4 - hkcu\..\run: [indxstoresvr_{79662e04-7c6c-4d9f-84c7-88d8a56b10aa}] c:\program files\common files\nero\lib\nmindexstoresvr.exe aso-616b5711-6dae-4795-a05f-39a1e5104020
o4 - hkcu\..\run: [auslogics disk defrag] c:\program files\auslogics\auslogics disk defrag\diskdefrag.exe -usetray
o4 - hkcu\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe
o4 - hkcu\..\run: [360amigo] c:\program files\360amigo\360amigo.exe -autorun
o4 - startup: openoffice.org 3.3 .lnk = c:\program files\openoffice.org 3\program\quickstart.exe
o4 - global startup: hp digital imaging monitor.lnk = c:\program files\hp\digital imaging\bin\hpqtra08.exe
o4 - global startup: logitech desktop messenger.lnk = c:\program files\logitech\desktop messenger\8876480\program\ldmconf.exe
o4 - global startup: logitech setpoint.lnk = c:\program files\logitech\setpoint\setpoint.exe
o8 - extra context menu item: e&xporteren naar microsoft excel - res://c:\progra~1\micros~3\office12\excel.exe/3000
o9 - extra button: research - {92780b25-18cc-41c8-b9be-3c9c571a8263} - c:\progra~1\micros~3\office12\refiebar.dll
o9 - extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra 'tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o16 - dpf: {34dc6011-88b5-4ea9-ba7a-dc7b4f4437fe} (jordanuploader class) - [noparse]http://foto.hema.nl/ips-opdata/layout/hema/objects/jordan.cab[/noparse]
o16 - dpf: {3ea4fa88-e0be-419a-a732-9b79b87a6ed0} (ctvuaxctrl object) - [noparse]http://dl.tvunetworks.com/tvuax.cab[/noparse]
o16 - dpf: {6414512b-b978-451d-a0d8-fcfdf33e833c} (wuwebcontrol class) - [noparse]http://update.microsoft.com/microsoftupdate/v6/v5controls/en/x86/client/wuweb_site.cab?1233353893171[/noparse]
o16 - dpf: {67dabfbf-d0ab-41fa-9c46-cc0f21721616} - [noparse]http://download.divx.com/player/divxbrowserplugin.cab[/noparse]
o16 - dpf: {6e32070a-766d-4ee6-879c-dc1fa91d2fc3} (muwebcontrol class) - [noparse]http://update.microsoft.com/microsoftupdate/v6/v5controls/en/x86/client/muweb_site.cab?1233353867015[/noparse]
o16 - dpf: {8feff364-6a5f-4966-a917-a3ac28411659} (sopcore control) - [noparse]http://download.sopcast.cn/download/sopcore.cab[/noparse]
o16 - dpf: {d27cdb6e-ae6d-11cf-96b8-444553540000} (shockwave flash object) - [noparse]http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab[/noparse]
o16 - dpf: {e2883e8f-472f-4fb0-9522-ac9bf37916a7} (get_atlcom class) - [noparse]http://platformdl.adobe.com/nos/getplusplus/1.6/gp.cab[/noparse]
o18 - protocol: skype4com - {ffc8b962-9b40-4dff-9458-1830c7dd7f5d} - c:\progra~1\common~1\skype\skype4~1.dll
o22 - sharedtaskscheduler: preloader van browseui - {438755c2-a8ba-11d1-b96b-00a0c90312e1} - c:\windows\system32\browseui.dll
o22 - sharedtaskscheduler: cache-daemon voor onderdeelcategorien - {8c7461ef-2b13-11d2-be35-3078302c2030} - c:\windows\system32\browseui.dll
o23 - service: avast! antivirus - avast software - c:\program files\alwil software\avast5\avastsvc.exe
o23 - service: google updateservice (gupdate) (gupdate) - google inc. - c:\program files\google\update\googleupdate.exe
o23 - service: google update-service (gupdatem) (gupdatem) - google inc. - c:\program files\google\update\googleupdate.exe
o23 - service: installdriver table manager (idrivert) - macrovision corporation - c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe
o23 - service: java quick starter (javaquickstarterservice) - sun microsystems, inc. - c:\program files\java\jre6\bin\jqs.exe
o23 - service: logitech bluetooth service (lbtserv) - logitech, inc. - c:\program files\common files\logishrd\bluetooth\lbtserv.exe
o23 - service: lvcomser - logitech inc. - c:\program files\common files\logishrd\lvcomser\lvcomser.exe
o23 - service: process monitor (lvprcsrv) - logitech inc. - c:\program files\common files\logishrd\lvmvfm\lvprcsrv.exe
o23 - service: lvsrvlauncher - logitech inc. - c:\program files\common files\logishrd\srvlnch\srvlnch.exe
o23 - service: nero backitup scheduler 3 - nero ag - c:\program files\nero\nero8\nero backitup\nbservice.exe
o23 - service: nmindexingservice - nero ag - c:\program files\common files\nero\lib\nmindexingservice.exe
o23 - service: nvidia display driver service (nvsvc) - nvidia corporation - c:\windows\system32\nvsvc32.exe
o23 - service: plflash deviceiocontrol service - prolific technology inc. - c:\windows\system32\ioctlsvc.exe
o23 - service: servicelayer - unknown owner - c:\program files\pc connectivity solution\servicelayer.exe (file missing)
o23 - service: starwind iscsi service (starwindservice) - rocket division software - o:\programma's\alcohol 120\alcohol 120\starwind\starwindservice.exe
o23 - service: tuneup utilities service (tuneup.utilitiessvc) - tuneup software - c:\program files\tuneup utilities 2011\tuneuputilitiesservice32.exe
o23 - service: securom user access service (v7) (useraccess7) - unknown owner - c:\windows\system32\uaservice7.exe
--
end of file - 10626 bytes
[/hjt]
Malwarebytes log volgt
[hjt]
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:01:56, on 17-6-2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
c:\windows\system32\smss.exe
c:\windows\system32\winlogon.exe
c:\windows\system32\services.exe
c:\windows\system32\lsass.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\program files\alwil software\avast5\avastsvc.exe
c:\windows\explorer.exe
c:\windows\system32\spoolsv.exe
c:\windows\system32\svchost.exe
c:\program files\java\jre6\bin\jqs.exe
c:\program files\google\update\googleupdate.exe
c:\program files\common files\logishrd\lvcomser\lvcomser.exe
c:\program files\common files\logishrd\lcommgr\communications_helper.exe
c:\program files\common files\logishrd\lvmvfm\lvprcsrv.exe
c:\program files\logitech\quickcam\quickcam.exe
c:\windows\system32\rundll32.exe
c:\program files\nero\nero8\nero backitup\nbservice.exe
c:\program files\hp\hp software update\hpwuschd2.exe
c:\program files\alwil software\avast5\avastui.exe
c:\program files\common files\java\java update\jusched.exe
c:\program files\logitech\desktop messenger\8876480\program\backweb-8876480.exe
c:\program files\common files\nero\lib\nmindexstoresvr.exe
c:\windows\system32\svchost.exe
c:\windows\system32\ioctlsvc.exe
c:\windows\system32\svchost.exe
c:\program files\auslogics\auslogics disk defrag\diskdefrag.exe
c:\program files\microsoft\search enhancement pack\seaport\seaport.exe
c:\windows\system32\ctfmon.exe
o:\programma's\alcohol 120\alcohol 120\starwind\starwindservice.exe
c:\windows\system32\svchost.exe
c:\program files\tuneup utilities 2011\tuneuputilitiesservice32.exe
c:\program files\hp\digital imaging\bin\hpqtra08.exe
c:\windows\system32\uaservice7.exe
c:\program files\logitech\setpoint\setpoint.exe
c:\program files\openoffice.org 3\program\soffice.exe
c:\program files\common files\logishrd\lqcvfx\cocimanager.exe
c:\program files\openoffice.org 3\program\soffice.bin
c:\program files\malwarebytes' anti-malware\mbam.exe
c:\program files\common files\logishrd\khal2\khalmnpr.exe
c:\program files\tuneup utilities 2011\tuneuputilitiesapp32.exe
c:\program files\common files\logishrd\lvcomser\lvcomser.exe
c:\program files\common files\nero\lib\nmindexingservice.exe
c:\program files\windows live\messenger\msnmsgr.exe
c:\program files\windows live\contacts\wlcomm.exe
c:\program files\trend micro\hijackthis\hijackthis.exe
r0 - hkcu\software\microsoft\internet explorer\main,start page = [noparse]http://www.ziggo.nl/[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_page_url = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_search_url = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hklm\software\microsoft\internet explorer\search,searchassistant = [noparse]http://search.babylon.com/?babsrc=sp_ss&q={searchterms}&mntrid=8c6fd113000000000000002215cf2062&tlver=1.4.19.19&affid=17160[/noparse]
r1 - hkcu\software\microsoft\windows\currentversion\internet settings,proxyoverride = localhost
o2 - bho: acroiehelperstub - {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
o2 - bho: search helper - {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\searchhelper.dll
o2 - bho: windows live aanmelden - help - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: java(tm) plug-in 2 ssv helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
o2 - bho: windows live toolbar helper - {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
o2 - bho: jqsiestartdetectorimpl - {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
o3 - toolbar: &windows live toolbar - {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
o3 - toolbar: (no name) - {10edb994-47f8-43f7-ae96-f2ea63e9f90f} - (no file)
o4 - hklm\..\run: [zbrowser launcher] c:\program files\logitech\itouch\itouch.exe
o4 - hklm\..\run: [logitechcommunicationsmanager] c:\program files\common files\logishrd\lcommgr\communications_helper.exe
o4 - hklm\..\run: [logitechquickcamribbon] c:\program files\logitech\quickcam\quickcam.exe /hide
o4 - hklm\..\run: [bluetoothauthenticationagent] rundll32.exe bthprops.cpl,,bluetoothauthenticationagent
o4 - hklm\..\run: [nbkeyscan] c:\program files\nero\nero8\nero backitup\nbkeyscan.exe
o4 - hklm\..\run: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install
o4 - hklm\..\run: [hp software update] c:\program files\hp\hp software update\hpwuschd2.exe
o4 - hklm\..\run: [kernel and hardware abstraction layer] khalmnpr.exe
o4 - hklm\..\run: [nvcpldaemon] rundll32.exe c:\windows\system32\nvcpl.dll,nvstartup
o4 - hklm\..\run: [adobe reader speed launcher] c:\program files\adobe\reader 9.0\reader\reader_sl.exe
o4 - hklm\..\run: [adobe arm] c:\program files\common files\adobe\arm\1.0\adobearm.exe
o4 - hklm\..\run: [avast5] c:\program files\alwil software\avast5\avastui.exe /nogui
o4 - hklm\..\run: [sunjavaupdatesched] c:\program files\common files\java\java update\jusched.exe
o4 - hkcu\..\run: [ldm] c:\program files\logitech\desktop messenger\8876480\program\backweb-8876480.exe
o4 - hkcu\..\run: [indxstoresvr_{79662e04-7c6c-4d9f-84c7-88d8a56b10aa}] c:\program files\common files\nero\lib\nmindexstoresvr.exe aso-616b5711-6dae-4795-a05f-39a1e5104020
o4 - hkcu\..\run: [auslogics disk defrag] c:\program files\auslogics\auslogics disk defrag\diskdefrag.exe -usetray
o4 - hkcu\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe
o4 - hkcu\..\run: [360amigo] c:\program files\360amigo\360amigo.exe -autorun
o4 - startup: openoffice.org 3.3 .lnk = c:\program files\openoffice.org 3\program\quickstart.exe
o4 - global startup: hp digital imaging monitor.lnk = c:\program files\hp\digital imaging\bin\hpqtra08.exe
o4 - global startup: logitech desktop messenger.lnk = c:\program files\logitech\desktop messenger\8876480\program\ldmconf.exe
o4 - global startup: logitech setpoint.lnk = c:\program files\logitech\setpoint\setpoint.exe
o8 - extra context menu item: e&xporteren naar microsoft excel - res://c:\progra~1\micros~3\office12\excel.exe/3000
o9 - extra button: research - {92780b25-18cc-41c8-b9be-3c9c571a8263} - c:\progra~1\micros~3\office12\refiebar.dll
o9 - extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra 'tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o16 - dpf: {34dc6011-88b5-4ea9-ba7a-dc7b4f4437fe} (jordanuploader class) - [noparse]http://foto.hema.nl/ips-opdata/layout/hema/objects/jordan.cab[/noparse]
o16 - dpf: {3ea4fa88-e0be-419a-a732-9b79b87a6ed0} (ctvuaxctrl object) - [noparse]http://dl.tvunetworks.com/tvuax.cab[/noparse]
o16 - dpf: {6414512b-b978-451d-a0d8-fcfdf33e833c} (wuwebcontrol class) - [noparse]http://update.microsoft.com/microsoftupdate/v6/v5controls/en/x86/client/wuweb_site.cab?1233353893171[/noparse]
o16 - dpf: {67dabfbf-d0ab-41fa-9c46-cc0f21721616} - [noparse]http://download.divx.com/player/divxbrowserplugin.cab[/noparse]
o16 - dpf: {6e32070a-766d-4ee6-879c-dc1fa91d2fc3} (muwebcontrol class) - [noparse]http://update.microsoft.com/microsoftupdate/v6/v5controls/en/x86/client/muweb_site.cab?1233353867015[/noparse]
o16 - dpf: {8feff364-6a5f-4966-a917-a3ac28411659} (sopcore control) - [noparse]http://download.sopcast.cn/download/sopcore.cab[/noparse]
o16 - dpf: {d27cdb6e-ae6d-11cf-96b8-444553540000} (shockwave flash object) - [noparse]http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab[/noparse]
o16 - dpf: {e2883e8f-472f-4fb0-9522-ac9bf37916a7} (get_atlcom class) - [noparse]http://platformdl.adobe.com/nos/getplusplus/1.6/gp.cab[/noparse]
o18 - protocol: skype4com - {ffc8b962-9b40-4dff-9458-1830c7dd7f5d} - c:\progra~1\common~1\skype\skype4~1.dll
o22 - sharedtaskscheduler: preloader van browseui - {438755c2-a8ba-11d1-b96b-00a0c90312e1} - c:\windows\system32\browseui.dll
o22 - sharedtaskscheduler: cache-daemon voor onderdeelcategorien - {8c7461ef-2b13-11d2-be35-3078302c2030} - c:\windows\system32\browseui.dll
o23 - service: avast! antivirus - avast software - c:\program files\alwil software\avast5\avastsvc.exe
o23 - service: google updateservice (gupdate) (gupdate) - google inc. - c:\program files\google\update\googleupdate.exe
o23 - service: google update-service (gupdatem) (gupdatem) - google inc. - c:\program files\google\update\googleupdate.exe
o23 - service: installdriver table manager (idrivert) - macrovision corporation - c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe
o23 - service: java quick starter (javaquickstarterservice) - sun microsystems, inc. - c:\program files\java\jre6\bin\jqs.exe
o23 - service: logitech bluetooth service (lbtserv) - logitech, inc. - c:\program files\common files\logishrd\bluetooth\lbtserv.exe
o23 - service: lvcomser - logitech inc. - c:\program files\common files\logishrd\lvcomser\lvcomser.exe
o23 - service: process monitor (lvprcsrv) - logitech inc. - c:\program files\common files\logishrd\lvmvfm\lvprcsrv.exe
o23 - service: lvsrvlauncher - logitech inc. - c:\program files\common files\logishrd\srvlnch\srvlnch.exe
o23 - service: nero backitup scheduler 3 - nero ag - c:\program files\nero\nero8\nero backitup\nbservice.exe
o23 - service: nmindexingservice - nero ag - c:\program files\common files\nero\lib\nmindexingservice.exe
o23 - service: nvidia display driver service (nvsvc) - nvidia corporation - c:\windows\system32\nvsvc32.exe
o23 - service: plflash deviceiocontrol service - prolific technology inc. - c:\windows\system32\ioctlsvc.exe
o23 - service: servicelayer - unknown owner - c:\program files\pc connectivity solution\servicelayer.exe (file missing)
o23 - service: starwind iscsi service (starwindservice) - rocket division software - o:\programma's\alcohol 120\alcohol 120\starwind\starwindservice.exe
o23 - service: tuneup utilities service (tuneup.utilitiessvc) - tuneup software - c:\program files\tuneup utilities 2011\tuneuputilitiesservice32.exe
o23 - service: securom user access service (v7) (useraccess7) - unknown owner - c:\windows\system32\uaservice7.exe
--
end of file - 10626 bytes
[/hjt]
Malwarebytes log volgt