Nikos
Banned
- Lid geworden
- 21 sep 2005
- Berichten
- 18.498
- Waarderingsscore
- 0
Hey Kingpin, Abraham,
Een vriend heeft wat last van een virus infectie.
ik heb hem norman en avg al laten verwijderen en avira er op laten zetten.
edit: hij gebruikt firefox maar krijgt soms popups van ie (CiD.avert )
ook gescand met mbam:
hijackthislogje:
[hjt]
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:28:46, on 13-3-2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
c:\windows\system32\smss.exe
c:\windows\system32\winlogon.exe
c:\windows\system32\services.exe
c:\windows\system32\lsass.exe
c:\windows\system32\ati2evxx.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\ati2evxx.exe
c:\windows\explorer.exe
c:\windows\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\lvprcsrv.exe
c:\program files\avira\antivir personaledition classic\sched.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\lvcomsx.exe
c:\program files\logitech\video\cameraassistant.exe
c:\windows\system32\elkctrl.exe
c:\program files\razer\habu\razerhid.exe
c:\program files\itunes\ituneshelper.exe
c:\program files\java\jre6\bin\jusched.exe
c:\program files\avira\antivir personaledition classic\avgnt.exe
c:\windows\system32\ctfmon.exe
c:\program files\microsoft activesync\wcescomm.exe
c:\program files\windows live\messenger\msnmsgr.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe
c:\progra~1\messen~1\msmsgs.exe
c:\progra~1\micros~4\rapimgr.exe
c:\program files\avira\antivir personaledition classic\avguard.exe
c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe
c:\windows\system32\cisvc.exe
c:\program files\java\jre6\bin\jqs.exe
c:\program files\common files\microsoft shared\vs7debug\mdm.exe
c:\windows\system32\svchost.exe
c:\program files\razer\habu\razertra.exe
c:\program files\razer\habu\razerofa.exe
c:\windows\system32\wuauclt.exe
c:\program files\ipod\bin\ipodservice.exe
c:\program files\windows live\messenger\usnsvc.exe
c:\documents and settings\eigenaar\bureaublad\hijackthis.exe
r1 - hkcu\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hkcu\software\microsoft\internet explorer\main,start page = [noparse]http://www.google.nl/[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_page_url = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_search_url = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hklm\software\microsoft\internet explorer\main,start page = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r1 - hkcu\software\microsoft\internet connection wizard,shellnext = [noparse]http://go.microsoft.com/fwlink/?linkid=74005[/noparse]
r1 - hkcu\software\microsoft\windows\currentversion\internet settings,autoconfigurl = [noparse]http://localhost:9100/proxy.pac[/noparse]
r0 - hkcu\software\microsoft\internet explorer\toolbar,linksfoldername = koppelingen
o2 - bho: nco 2.0 ie bho - {602adb0e-4aff-4217-8aa1-95dac4dfa408} - (no file)
o2 - bho: ssvhelper class - {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
o2 - bho: (no name) - {7e853d72-626a-48ec-a868-ba8d5e23e045} - (no file)
o2 - bho: windows live aanmelden - help - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: java(tm) plug-in 2 ssv helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
o2 - bho: jqsiestartdetectorimpl - {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
o3 - toolbar: (no name) - {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - (no file)
o4 - hklm\..\run: [cmaudio] rundll32 cmicnfg.cpl,cmictrlwnd
o4 - hklm\..\run: [nerofiltercheck] c:\windows\system32\nerocheck.exe
o4 - hklm\..\run: [winampagent] c:\program files\winamp\winampa.exe
o4 - hklm\..\run: [lvcomsx] c:\windows\system32\lvcomsx.exe
o4 - hklm\..\run: [logitechcameraassistant] c:\program files\logitech\video\cameraassistant.exe
o4 - hklm\..\run: [logitechvideo[inspector]] c:\program files\logitech\video\installhelper.exe /inspect
o4 - hklm\..\run: [logitechcameraservice(e)] c:\windows\system32\elkctrl.exe /automation
o4 - hklm\..\run: [philipsdm] c:\program files\philips\philips device manager\bin\devicemanager.exe os_startup
o4 - hklm\..\run: [user bib mp3 plan] c:\documents and settings\all users\application data\amok copy user bib\glue admin.exe
o4 - hklm\..\run: [habu] c:\program files\razer\habu\razerhid.exe
o4 - hklm\..\run: [quicktime task] c:\program files\quicktime\qttask.exe -atboottime
o4 - hklm\..\run: [ituneshelper] c:\program files\itunes\ituneshelper.exe
o4 - hklm\..\run: [sunjavaupdatesched] c:\program files\java\jre6\bin\jusched.exe
o4 - hklm\..\run: [avgnt] c:\program files\avira\antivir personaledition classic\avgnt.exe /min
o4 - hklm\..\run: [kernelfaultcheck] %systemroot%\system32\dumprep 0 -k
o4 - hkcu\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe
o4 - hkcu\..\run: [spyware doctor] c:\program files\spyware doctor\swdoctor.exe /q
o4 - hkcu\..\run: [h/pc connection agent] c:\program files\microsoft activesync\wcescomm.exe
o4 - hkcu\..\run: [msnmsgr] c:\program files\windows live\messenger\msnmsgr.exe /background
o4 - hkcu\..\run: [ldm] c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe
o4 - hkcu\..\run: [msmsgs] c:\progra~1\messen~1\msmsgs.exe /background
o4 - hkus\s-1-5-19\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'lokale service')
o4 - hkus\s-1-5-20\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'netwerkservice')
o4 - hkus\s-1-5-18\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'system')
o4 - hkus\.default\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'default user')
o4 - global startup: logitech desktop messenger.lnk = c:\program files\logitech\desktop messenger\8876480\program\ldmconf.exe
o4 - global startup: microsoft office.lnk = c:\program files\microsoft office\office10\osa.exe
o8 - extra context menu item: e&xport to microsoft excel - res://c:\progra~1\micros~3\office11\excel.exe/3000
o9 - extra button: (no name) - {08b0e5c0-4fcb-11cf-aaa5-00401c608501} - c:\program files\java\jre6\bin\jp2iexp.dll
o9 - extra 'tools' menuitem: sun java console - {08b0e5c0-4fcb-11cf-aaa5-00401c608501} - c:\program files\java\jre6\bin\jp2iexp.dll
o9 - extra button: spyware doctor - {2d663d1a-8670-49d9-a1a5-4c56b4e14e84} - c:\windows\system32\shdocvw.dll
o9 - extra button: create mobile favorite - {2eaf5bb1-070f-11d3-9307-00c04fae2d4f} - c:\progra~1\micros~4\inetrepl.dll
o9 - extra button: (no name) - {2eaf5bb2-070f-11d3-9307-00c04fae2d4f} - c:\progra~1\micros~4\inetrepl.dll
o9 - extra 'tools' menuitem: create mobile favorite... - {2eaf5bb2-070f-11d3-9307-00c04fae2d4f} - c:\progra~1\micros~4\inetrepl.dll
o9 - extra button: research - {92780b25-18cc-41c8-b9be-3c9c571a8263} - c:\progra~1\micros~3\office11\refiebar.dll
o9 - extra button: run imvu - {d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\wearloga\menu start\programma's\imvu\run imvu.lnk (file missing)
o9 - extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra 'tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra button: messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o9 - extra 'tools' menuitem: windows messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o10 - unknown file in winsock lsp: c:\windows\system32\nwprovau.dll
o16 - dpf: {17492023-c23a-453e-a040-c7c580bbf700} (windows genuine advantage validation tool) - [noparse]http://go.microsoft.com/fwlink/?linkid=39204[/noparse]
o18 - protocol: bw+0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw+0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw-0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw-0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw00 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw00s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw10 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw10s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw20 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw20s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw30 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw30s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw40 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw40s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw50 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw50s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw60 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw60s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw70 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw70s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw80 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw80s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw90 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw90s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwa0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwa0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwb0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwb0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwc0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwc0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwd0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwd0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwe0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwe0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwf0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwf0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwfile-8876480 - {9462a756-7b47-47bc-8c80-c34b9b80b32b} - c:\program files\logitech\desktop messenger\8876480\program\gaplugprotocol-8876480.dll
o18 - protocol: bwg0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwg0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwh0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwh0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwi0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwi0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwj0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwj0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwk0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwk0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwl0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwl0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwm0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwm0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwn0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwn0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwo0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwo0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwp0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwp0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwq0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwq0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwr0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwr0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bws0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bws0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwt0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwt0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwu0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwu0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwv0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwv0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bww0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bww0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwx0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwx0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwy0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwy0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwz0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwz0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: offline-8876480 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o23 - service: avira antivir personal - free antivirus scheduler (antivirscheduler) - avira gmbh - c:\program files\avira\antivir personaledition classic\sched.exe
o23 - service: avira antivir personal - free antivirus guard (antivirservice) - avira gmbh - c:\program files\avira\antivir personaledition classic\avguard.exe
o23 - service: mobiel apple apparaat (apple mobile device) - apple inc. - c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe
o23 - service: ati hotkey poller - ati technologies inc. - c:\windows\system32\ati2evxx.exe
o23 - service: ati smart - unknown owner - c:\windows\system32\ati2sgag.exe
o23 - service: installdriver table manager (idrivert) - macrovision corporation - c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe
o23 - service: ipod-service (ipod service) - apple inc. - c:\program files\ipod\bin\ipodservice.exe
o23 - service: java quick starter (javaquickstarterservice) - sun microsystems, inc. - c:\program files\java\jre6\bin\jqs.exe
o23 - service: logitech process monitor (lvprcsrv) - logitech inc. - c:\program files\common files\logitech\lvmvfm\lvprcsrv.exe
o23 - service: pml driver hpz12 - hp - c:\windows\system32\hpzipm12.exe
--
end of file - 21154 bytes
[/hjt]
Uninstall list:
Ik laat hem Java unistalleren en de nieuwst er opzetten!
Avira heeft rond de 160 dingen gevonden...
kijk nog even of ik daar ook een log van kan krijgen.
Een vriend heeft wat last van een virus infectie.
ik heb hem norman en avg al laten verwijderen en avira er op laten zetten.
edit: hij gebruikt firefox maar krijgt soms popups van ie (CiD.avert )
ook gescand met mbam:
Code:
Registersleutels genfecteerd:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{90b5a95a-afd5-4d11-b9bd-a69d53d22226} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8109fd3d-d891-4f80-8339-50a4913ace6f} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0ac49246-419b-4ee0-8917-8818daad6a4e} (Adware.180Solutions) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{99410cde-6f16-42ce-9d49-3807f78f0287} (Adware.180Solutions) -> Quarantined and deleted successfully.
Registerwaarden genfecteerd:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\hpfsched (Trojan.FakeAlert.H) -> Quarantined and deleted successfully.
Bestanden genfecteerd:
C:\WINDOWS\hpfsched.exe (Trojan.FakeAlert.H) -> Quarantined and deleted successfully.
[hjt]
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:28:46, on 13-3-2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
c:\windows\system32\smss.exe
c:\windows\system32\winlogon.exe
c:\windows\system32\services.exe
c:\windows\system32\lsass.exe
c:\windows\system32\ati2evxx.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\ati2evxx.exe
c:\windows\explorer.exe
c:\windows\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\lvprcsrv.exe
c:\program files\avira\antivir personaledition classic\sched.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\lvcomsx.exe
c:\program files\logitech\video\cameraassistant.exe
c:\windows\system32\elkctrl.exe
c:\program files\razer\habu\razerhid.exe
c:\program files\itunes\ituneshelper.exe
c:\program files\java\jre6\bin\jusched.exe
c:\program files\avira\antivir personaledition classic\avgnt.exe
c:\windows\system32\ctfmon.exe
c:\program files\microsoft activesync\wcescomm.exe
c:\program files\windows live\messenger\msnmsgr.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe
c:\progra~1\messen~1\msmsgs.exe
c:\progra~1\micros~4\rapimgr.exe
c:\program files\avira\antivir personaledition classic\avguard.exe
c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe
c:\windows\system32\cisvc.exe
c:\program files\java\jre6\bin\jqs.exe
c:\program files\common files\microsoft shared\vs7debug\mdm.exe
c:\windows\system32\svchost.exe
c:\program files\razer\habu\razertra.exe
c:\program files\razer\habu\razerofa.exe
c:\windows\system32\wuauclt.exe
c:\program files\ipod\bin\ipodservice.exe
c:\program files\windows live\messenger\usnsvc.exe
c:\documents and settings\eigenaar\bureaublad\hijackthis.exe
r1 - hkcu\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hkcu\software\microsoft\internet explorer\main,start page = [noparse]http://www.google.nl/[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_page_url = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_search_url = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hklm\software\microsoft\internet explorer\main,start page = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r1 - hkcu\software\microsoft\internet connection wizard,shellnext = [noparse]http://go.microsoft.com/fwlink/?linkid=74005[/noparse]
r1 - hkcu\software\microsoft\windows\currentversion\internet settings,autoconfigurl = [noparse]http://localhost:9100/proxy.pac[/noparse]
r0 - hkcu\software\microsoft\internet explorer\toolbar,linksfoldername = koppelingen
o2 - bho: nco 2.0 ie bho - {602adb0e-4aff-4217-8aa1-95dac4dfa408} - (no file)
o2 - bho: ssvhelper class - {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
o2 - bho: (no name) - {7e853d72-626a-48ec-a868-ba8d5e23e045} - (no file)
o2 - bho: windows live aanmelden - help - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: java(tm) plug-in 2 ssv helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
o2 - bho: jqsiestartdetectorimpl - {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
o3 - toolbar: (no name) - {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - (no file)
o4 - hklm\..\run: [cmaudio] rundll32 cmicnfg.cpl,cmictrlwnd
o4 - hklm\..\run: [nerofiltercheck] c:\windows\system32\nerocheck.exe
o4 - hklm\..\run: [winampagent] c:\program files\winamp\winampa.exe
o4 - hklm\..\run: [lvcomsx] c:\windows\system32\lvcomsx.exe
o4 - hklm\..\run: [logitechcameraassistant] c:\program files\logitech\video\cameraassistant.exe
o4 - hklm\..\run: [logitechvideo[inspector]] c:\program files\logitech\video\installhelper.exe /inspect
o4 - hklm\..\run: [logitechcameraservice(e)] c:\windows\system32\elkctrl.exe /automation
o4 - hklm\..\run: [philipsdm] c:\program files\philips\philips device manager\bin\devicemanager.exe os_startup
o4 - hklm\..\run: [user bib mp3 plan] c:\documents and settings\all users\application data\amok copy user bib\glue admin.exe
o4 - hklm\..\run: [habu] c:\program files\razer\habu\razerhid.exe
o4 - hklm\..\run: [quicktime task] c:\program files\quicktime\qttask.exe -atboottime
o4 - hklm\..\run: [ituneshelper] c:\program files\itunes\ituneshelper.exe
o4 - hklm\..\run: [sunjavaupdatesched] c:\program files\java\jre6\bin\jusched.exe
o4 - hklm\..\run: [avgnt] c:\program files\avira\antivir personaledition classic\avgnt.exe /min
o4 - hklm\..\run: [kernelfaultcheck] %systemroot%\system32\dumprep 0 -k
o4 - hkcu\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe
o4 - hkcu\..\run: [spyware doctor] c:\program files\spyware doctor\swdoctor.exe /q
o4 - hkcu\..\run: [h/pc connection agent] c:\program files\microsoft activesync\wcescomm.exe
o4 - hkcu\..\run: [msnmsgr] c:\program files\windows live\messenger\msnmsgr.exe /background
o4 - hkcu\..\run: [ldm] c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe
o4 - hkcu\..\run: [msmsgs] c:\progra~1\messen~1\msmsgs.exe /background
o4 - hkus\s-1-5-19\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'lokale service')
o4 - hkus\s-1-5-20\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'netwerkservice')
o4 - hkus\s-1-5-18\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'system')
o4 - hkus\.default\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'default user')
o4 - global startup: logitech desktop messenger.lnk = c:\program files\logitech\desktop messenger\8876480\program\ldmconf.exe
o4 - global startup: microsoft office.lnk = c:\program files\microsoft office\office10\osa.exe
o8 - extra context menu item: e&xport to microsoft excel - res://c:\progra~1\micros~3\office11\excel.exe/3000
o9 - extra button: (no name) - {08b0e5c0-4fcb-11cf-aaa5-00401c608501} - c:\program files\java\jre6\bin\jp2iexp.dll
o9 - extra 'tools' menuitem: sun java console - {08b0e5c0-4fcb-11cf-aaa5-00401c608501} - c:\program files\java\jre6\bin\jp2iexp.dll
o9 - extra button: spyware doctor - {2d663d1a-8670-49d9-a1a5-4c56b4e14e84} - c:\windows\system32\shdocvw.dll
o9 - extra button: create mobile favorite - {2eaf5bb1-070f-11d3-9307-00c04fae2d4f} - c:\progra~1\micros~4\inetrepl.dll
o9 - extra button: (no name) - {2eaf5bb2-070f-11d3-9307-00c04fae2d4f} - c:\progra~1\micros~4\inetrepl.dll
o9 - extra 'tools' menuitem: create mobile favorite... - {2eaf5bb2-070f-11d3-9307-00c04fae2d4f} - c:\progra~1\micros~4\inetrepl.dll
o9 - extra button: research - {92780b25-18cc-41c8-b9be-3c9c571a8263} - c:\progra~1\micros~3\office11\refiebar.dll
o9 - extra button: run imvu - {d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\wearloga\menu start\programma's\imvu\run imvu.lnk (file missing)
o9 - extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra 'tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra button: messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o9 - extra 'tools' menuitem: windows messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o10 - unknown file in winsock lsp: c:\windows\system32\nwprovau.dll
o16 - dpf: {17492023-c23a-453e-a040-c7c580bbf700} (windows genuine advantage validation tool) - [noparse]http://go.microsoft.com/fwlink/?linkid=39204[/noparse]
o18 - protocol: bw+0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw+0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw-0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw-0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw00 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw00s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw10 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw10s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw20 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw20s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw30 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw30s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw40 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw40s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw50 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw50s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw60 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw60s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw70 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw70s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw80 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw80s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw90 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bw90s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwa0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwa0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwb0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwb0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwc0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwc0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwd0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwd0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwe0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwe0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwf0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwf0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwfile-8876480 - {9462a756-7b47-47bc-8c80-c34b9b80b32b} - c:\program files\logitech\desktop messenger\8876480\program\gaplugprotocol-8876480.dll
o18 - protocol: bwg0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwg0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwh0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwh0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwi0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwi0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwj0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwj0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwk0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwk0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwl0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwl0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwm0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwm0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwn0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwn0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwo0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwo0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwp0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwp0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwq0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwq0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwr0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwr0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bws0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bws0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwt0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwt0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwu0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwu0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwv0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwv0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bww0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bww0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwx0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwx0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwy0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwy0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwz0 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: bwz0s - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o18 - protocol: offline-8876480 - {74989bef-b761-45ab-a288-ced490abcba0} - c:\program files\logitech\desktop messenger\8876480\program\bwplugprotocol-8876480.dll
o23 - service: avira antivir personal - free antivirus scheduler (antivirscheduler) - avira gmbh - c:\program files\avira\antivir personaledition classic\sched.exe
o23 - service: avira antivir personal - free antivirus guard (antivirservice) - avira gmbh - c:\program files\avira\antivir personaledition classic\avguard.exe
o23 - service: mobiel apple apparaat (apple mobile device) - apple inc. - c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe
o23 - service: ati hotkey poller - ati technologies inc. - c:\windows\system32\ati2evxx.exe
o23 - service: ati smart - unknown owner - c:\windows\system32\ati2sgag.exe
o23 - service: installdriver table manager (idrivert) - macrovision corporation - c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe
o23 - service: ipod-service (ipod service) - apple inc. - c:\program files\ipod\bin\ipodservice.exe
o23 - service: java quick starter (javaquickstarterservice) - sun microsystems, inc. - c:\program files\java\jre6\bin\jqs.exe
o23 - service: logitech process monitor (lvprcsrv) - logitech inc. - c:\program files\common files\logitech\lvmvfm\lvprcsrv.exe
o23 - service: pml driver hpz12 - hp - c:\windows\system32\hpzipm12.exe
--
end of file - 21154 bytes
[/hjt]
Uninstall list:
Ik laat hem Java unistalleren en de nieuwst er opzetten!
Code:
Adobe Flash Player 10 Plugin
Adobe Shockwave Player
Apple Mobile Device Support
Apple Software Update
ATI - Software Uninstall Utility
ATI Display Driver
Avira AntiVir Personal - Free Antivirus
Beveiligingsupdate for Windows Media Player 10 (KB936782)
Beveiligingsupdate for Windows XP (KB941569)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB938127)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB942615)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB944533)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB950759)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB953838)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB956390)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB958215)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB960714)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB961260)
Beveiligingsupdate voor Windows Media Player (KB952069)
Beveiligingsupdate voor Windows Media Player 11 (KB936782)
Beveiligingsupdate voor Windows Media Player 11 (KB954154)
Beveiligingsupdate voor Windows XP (KB938464)
Beveiligingsupdate voor Windows XP (KB938464-v2)
Beveiligingsupdate voor Windows XP (KB946648)
Beveiligingsupdate voor Windows XP (KB950760)
Beveiligingsupdate voor Windows XP (KB950762)
Beveiligingsupdate voor Windows XP (KB950974)
Beveiligingsupdate voor Windows XP (KB951066)
Beveiligingsupdate voor Windows XP (KB951376)
Beveiligingsupdate voor Windows XP (KB951376-v2)
Beveiligingsupdate voor Windows XP (KB951698)
Beveiligingsupdate voor Windows XP (KB951748)
Beveiligingsupdate voor Windows XP (KB952954)
Beveiligingsupdate voor Windows XP (KB953155)
Beveiligingsupdate voor Windows XP (KB953839)
Beveiligingsupdate voor Windows XP (KB954211)
Beveiligingsupdate voor Windows XP (KB954459)
Beveiligingsupdate voor Windows XP (KB954600)
Beveiligingsupdate voor Windows XP (KB955069)
Beveiligingsupdate voor Windows XP (KB956391)
Beveiligingsupdate voor Windows XP (KB956802)
Beveiligingsupdate voor Windows XP (KB956803)
Beveiligingsupdate voor Windows XP (KB956841)
Beveiligingsupdate voor Windows XP (KB957095)
Beveiligingsupdate voor Windows XP (KB957097)
Beveiligingsupdate voor Windows XP (KB958644)
Beveiligingsupdate voor Windows XP (KB958687)
Beveiligingsupdate voor Windows XP (KB958690)
Beveiligingsupdate voor Windows XP (KB960225)
Beveiligingsupdate voor Windows XP (KB960715)
C-Media 3D Audio
C-Media WDM Audio Driver
Compatibility Pack for the 2007 Office system
EetMeter2002
Essentile update voor Windows Media Player 11 (KB959772)
Guitar Pro 5.1
Hema Album Software Advanced
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.0 (KB932471)
Hotfix voor Windows Internet Explorer 7 (KB947864)
Hotfix voor Windows Media Player 11 (KB939683)
Hotfix voor Windows XP (KB952287)
iTunes
Java(TM) 6 Update 10
Java(TM) 6 Update 2
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6 Update 1
Logitech Desktop Messenger
Logitech QuickCam-software
Logitech Camera-stuurprogramma
Malwarebytes' Anti-Malware
Messenger Plus! Live & Sponsor (CiD)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Dutch Language Pack
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Language Pack - NLD
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft .NET Framework 3.0 Dutch Language Pack
Microsoft .NET Framework 3.0 Nederlands taalpakket
Microsoft .NET Framework 3.0 Service Pack 1
Microsoft ActiveSync 4.0
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Outlook 2002
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (3.0.7)
MSXML 4.0 SP2 (KB925672)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 6.0 Parser (KB933579)
MSXML4 Parser
MySpeed PC Lite Edition
Nero Suite
OpenOffice.org Installer 1.0
Pakket voor de provider van Microsoft Base-smartcardcryptografieservice
Pharaoh
Philips SA43XX Device Manager
PowerDVD
QuickTime
Razer Habu Config
SAT24 Screensaver
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Sierra Utilities
SwiftKit
TES Construction Set
TES Construction Set
Update voor Windows XP (KB951072-v2)
Update voor Windows XP (KB951978)
Update voor Windows XP (KB955839)
Update voor Windows XP (KB967715)
Windows Defender Signatures
Windows Driver Package - MOTOROLA (uisp) USB (09/08/2006 1.2.0.0)
Windows Driver Package - Razer (HidUsb) HIDClass (01/10/2007 1.00)
Windows Imaging Component
Windows Live aanmeldhulp
Windows Live installer
Windows Live Mail
Windows Live Messenger
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows Presentation Foundation
Windows Presentation Foundation Language Pack (NLD)
Windows Rights Management Client met Service Pack 2
Windows Workflow Foundation NL Language Pack
Windows XP Service Pack 3
WinRAR archiver
XML Paper Specification Shared Components Language Pack 1.0
Avira heeft rond de 160 dingen gevonden...
kijk nog even of ik daar ook een log van kan krijgen.