Thewisbone
Coole Dude!
- Lid geworden
- 15 aug 2008
- Berichten
- 5.292
- Waarderingsscore
- 1
Onze algeme computer die hier onder staat.
hij is meer van me vader maar iedereen zit er wel op.
Hij is nog al traag.
heb mbam al laten lopen en die heeft meer dan 60 virussen er uitgehaald en verwijderd.
en cc cleaner heeft 2 gb aan cookies en troep verwijderd.
hierbij een logje:
[hjt]
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:38:36, on 29-12-2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
c:\windows\system32\smss.exe
c:\windows\system32\winlogon.exe
c:\windows\system32\services.exe
c:\windows\system32\lsass.exe
c:\windows\system32\ati2evxx.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\ati2evxx.exe
c:\windows\system32\spoolsv.exe
c:\program files\pc veilig\anti-virus\fsgk32st.exe
c:\program files\pc veilig\common\fsma32.exe
c:\program files\pc veilig\anti-virus\fsgk32.exe
c:\program files\pc veilig\common\fshdll32.exe
c:\program files\java\jre6\bin\jqs.exe
c:\program files\trust\trust r-series mouse and keyboard\kmwdsrv.exe
c:\program files\common files\microsoft shared\vs7debug\mdm.exe
c:\windows\system32\svchost.exe
c:\program files\pc veilig\fwes\program\fsdfwd.exe
c:\program files\pc veilig\anti-virus\fssm32.exe
c:\program files\pc veilig\anti-virus\fsav32.exe
c:\windows\explorer.exe
c:\program files\ati technologies\ati.ace\core-static\mom.exe
c:\windows\system32\svchost.exe
c:\program files\ati technologies\ati.ace\core-static\ccc.exe
c:\windows\rthdcpl.exe
c:\program files\pc veilig\common\fsm32.exe
c:\program files\scansoft\paperport\pptd40nt.exe
c:\program files\brother\brmfcmon\brmfcwnd.exe
c:\program files\trust\trust r-series mouse and keyboard\mousedrv.exe
c:\program files\java\jre6\bin\jusched.exe
c:\windows\system32\ctfmon.exe
c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe
c:\program files\brother\brmfcmon\brmfcmon.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\internet explorer\iexplore.exe
c:\windows\microsoft.net\framework\v3.0\windows communication foundation\infocard.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\windows live\messenger\msnmsgr.exe
c:\program files\windows live\contacts\wlcomm.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\trend micro\hijackthis\hijackthis.exe
r0 - hkcu\software\microsoft\internet explorer\main,start page = [noparse]http://www.hetnet.nl/[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_page_url = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_search_url = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hklm\software\microsoft\internet explorer\main,start page = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r0 - hkcu\software\microsoft\internet explorer\toolbar,linksfoldername = koppelingen
o2 - bho: acroiehelperstub - {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
o2 - bho: (no name) - {5c255c8a-e604-49b4-9d64-90988571cecb} - (no file)
o2 - bho: windows live aanmelden - help - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: google toolbar helper - {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\googletoolbar.dll
o2 - bho: google toolbar notifier bho - {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.4.4525.1752\swg.dll
o2 - bho: litmusbho - {c6867eb7-8350-4856-877f-93cf8ae3dc9c} - c:\program files\pc veilig\nrs\iescript\baselitmus.dll
o2 - bho: google dictionary compression sdch - {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_a8904fb862bd9564.dll
o2 - bho: java(tm) plug-in 2 ssv helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
o2 - bho: jqsiestartdetectorimpl - {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
o3 - toolbar: google toolbar - {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\googletoolbar.dll
o3 - toolbar: browsing protection toolbar - {265eee8e-3228-44d3-aea5-f7fdf5860049} - c:\program files\pc veilig\nrs\iescript\baselitmus.dll
o4 - hklm\..\run: [startccc] c:\program files\ati technologies\ati.ace\core-static\clistart.exe
o4 - hklm\..\run: [rthdcpl] rthdcpl.exe
o4 - hklm\..\run: [alcmtr] alcmtr.exe
o4 - hklm\..\run: [nerofiltercheck] c:\windows\system32\nerocheck.exe
o4 - hklm\..\run: [f-secure manager] c:\program files\pc veilig\common\fsm32.exe /splash
o4 - hklm\..\run: [f-secure tnb] c:\program files\pc veilig\fsgui\tnbutil.exe /checkall /waitforsw
o4 - hklm\..\run: [ssbkgdupdate] c:\program files\common files\scansoft shared\ssbkgdupdate\ssbkgdupdate.exe -embedding -boot
o4 - hklm\..\run: [paperport ptd] c:\program files\scansoft\paperport\pptd40nt.exe
o4 - hklm\..\run: [indexsearch] c:\program files\scansoft\paperport\indexsearch.exe
o4 - hklm\..\run: [pport11reminder] c:\program files\scansoft\paperport\ereg\ereg.exe -r c:\documents and settings\all users\application data\scansoft\paperport\11\config\ereg\ereg.ini
o4 - hklm\..\run: [brmfcwnd] c:\program files\brother\brmfcmon\brmfcwnd.exe /autorun
o4 - hklm\..\run: [controlcenter3] c:\program files\brother\controlcenter3\brctrcen.exe /autorun
o4 - hklm\..\run: [wirelessmouse] c:\program files\trust\trust r-series mouse and keyboard\startautorun.exe mousedrv.exe
o4 - hklm\..\run: [adobe reader speed launcher] c:\program files\adobe\reader 9.0\reader\reader_sl.exe
o4 - hklm\..\run: [adobe arm] c:\program files\common files\adobe\arm\1.0\adobearm.exe
o4 - hklm\..\run: [sunjavaupdatesched] c:\program files\java\jre6\bin\jusched.exe
o4 - hkcu\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe
o4 - hkcu\..\run: [swg] c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe
o4 - hkus\s-1-5-19\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'lokale service')
o4 - hkus\s-1-5-20\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'netwerkservice')
o4 - hkus\s-1-5-18\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'system')
o4 - hkus\.default\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'default user')
o8 - extra context menu item: add to google photos screensa&ver - res://c:\windows\system32\gphotos.scr/200
o8 - extra context menu item: e&xporteren naar microsoft excel - res://c:\progra~1\micros~2\office10\excel.exe/3000
o9 - extra button: (no name) - {53f6fccd-9e22-4d71-86ea-6e43136192ab} - (no file)
o9 - extra button: (no name) - {925dab62-f9ac-4221-806a-057bfb1014aa} - (no file)
o9 - extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra 'tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra button: messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o9 - extra 'tools' menuitem: windows messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o16 - dpf: {1e54d648-b804-468d-bc78-4affed8e262e} (system requirements lab) - [noparse]http://www.systemrequirementslab.com/srl_bin/sysreqlab_srl.cab[/noparse]
o16 - dpf: {20a60f0d-9afa-4515-a0fd-83bd84642501} (checkers class) - [noparse]http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab[/noparse]
o16 - dpf: {40f576ad-8680-4f9e-9490-99d069cd665f} (system requirements lab class) - [noparse]http://srtest-cdn.systemrequirementslab.com.s3.amazonaws.com/bin/sysreqlabdetect.cab[/noparse]
o16 - dpf: {474f00f5-3853-492c-ac3a-476512bbc336} (uploadlistview class) - [noparse]http://picasaweb.google.nl/s/v/48.11/uploader2.cab[/noparse]
o16 - dpf: {5d6f45b3-9043-443d-a792-115447494d24} (unoctrl class) - [noparse]http://messenger.zone.msn.com/messengergamescontent/gamecontent/nl/uno1/game_uno1.cab[/noparse]
o16 - dpf: {bff1950d-b1b4-4ae8-b842-b2ccf06d9a1b} (zylom games player) - [noparse]http://game02.zylom.com/activex/zylomgamesplayer.cab[/noparse]
o16 - dpf: {c3f79a2b-b9b4-4a66-b012-3ee46475b072} (messengerstatsclient class) - [noparse]http://messenger.zone.msn.com/binary/messengerstatspaclient.cab56907.cab[/noparse]
o18 - filter: x-sdch - {b1759355-3eec-4c1e-b0f1-b719fe26e377} - c:\program files\google\google toolbar\component\fastsearch_a8904fb862bd9564.dll
o23 - service: ati hotkey poller - ati technologies inc. - c:\windows\system32\ati2evxx.exe
o23 - service: ati smart - unknown owner - c:\windows\system32\ati2sgag.exe
o23 - service: fsgkhs (f-secure gatekeeper handler starter) - f-secure corporation - c:\program files\pc veilig\anti-virus\fsgk32st.exe
o23 - service: f-secure anti-virus firewall daemon (fsdfwd) - f-secure corporation - c:\program files\pc veilig\fwes\program\fsdfwd.exe
o23 - service: fsma - f-secure corporation - c:\program files\pc veilig\common\fsma32.exe
o23 - service: f-secure orsp client (fsorspclient) - f-secure corporation - c:\program files\pc veilig\orsp client\fsorsp.exe
o23 - service: google updateservice (gupdate1c9c917b32046bc) (gupdate1c9c917b32046bc) - google inc. - c:\program files\google\update\googleupdate.exe
o23 - service: google software updater (gusvc) - google - c:\program files\google\common\google updater\googleupdaterservice.exe
o23 - service: java quick starter (javaquickstarterservice) - sun microsystems, inc. - c:\program files\java\jre6\bin\jqs.exe
o23 - service: keyboard and mouse communication service (kmwdservice) - uassoft.com - c:\program files\trust\trust r-series mouse and keyboard\kmwdsrv.exe
--
end of file - 9638 bytes
[/hjt]
hij is meer van me vader maar iedereen zit er wel op.
Hij is nog al traag.
heb mbam al laten lopen en die heeft meer dan 60 virussen er uitgehaald en verwijderd.
en cc cleaner heeft 2 gb aan cookies en troep verwijderd.
hierbij een logje:
[hjt]
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:38:36, on 29-12-2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
c:\windows\system32\smss.exe
c:\windows\system32\winlogon.exe
c:\windows\system32\services.exe
c:\windows\system32\lsass.exe
c:\windows\system32\ati2evxx.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\windows\system32\ati2evxx.exe
c:\windows\system32\spoolsv.exe
c:\program files\pc veilig\anti-virus\fsgk32st.exe
c:\program files\pc veilig\common\fsma32.exe
c:\program files\pc veilig\anti-virus\fsgk32.exe
c:\program files\pc veilig\common\fshdll32.exe
c:\program files\java\jre6\bin\jqs.exe
c:\program files\trust\trust r-series mouse and keyboard\kmwdsrv.exe
c:\program files\common files\microsoft shared\vs7debug\mdm.exe
c:\windows\system32\svchost.exe
c:\program files\pc veilig\fwes\program\fsdfwd.exe
c:\program files\pc veilig\anti-virus\fssm32.exe
c:\program files\pc veilig\anti-virus\fsav32.exe
c:\windows\explorer.exe
c:\program files\ati technologies\ati.ace\core-static\mom.exe
c:\windows\system32\svchost.exe
c:\program files\ati technologies\ati.ace\core-static\ccc.exe
c:\windows\rthdcpl.exe
c:\program files\pc veilig\common\fsm32.exe
c:\program files\scansoft\paperport\pptd40nt.exe
c:\program files\brother\brmfcmon\brmfcwnd.exe
c:\program files\trust\trust r-series mouse and keyboard\mousedrv.exe
c:\program files\java\jre6\bin\jusched.exe
c:\windows\system32\ctfmon.exe
c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe
c:\program files\brother\brmfcmon\brmfcmon.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\internet explorer\iexplore.exe
c:\windows\microsoft.net\framework\v3.0\windows communication foundation\infocard.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\windows live\messenger\msnmsgr.exe
c:\program files\windows live\contacts\wlcomm.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\trend micro\hijackthis\hijackthis.exe
r0 - hkcu\software\microsoft\internet explorer\main,start page = [noparse]http://www.hetnet.nl/[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_page_url = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_search_url = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hklm\software\microsoft\internet explorer\main,start page = [noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse]
r0 - hkcu\software\microsoft\internet explorer\toolbar,linksfoldername = koppelingen
o2 - bho: acroiehelperstub - {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
o2 - bho: (no name) - {5c255c8a-e604-49b4-9d64-90988571cecb} - (no file)
o2 - bho: windows live aanmelden - help - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: google toolbar helper - {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\googletoolbar.dll
o2 - bho: google toolbar notifier bho - {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.4.4525.1752\swg.dll
o2 - bho: litmusbho - {c6867eb7-8350-4856-877f-93cf8ae3dc9c} - c:\program files\pc veilig\nrs\iescript\baselitmus.dll
o2 - bho: google dictionary compression sdch - {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_a8904fb862bd9564.dll
o2 - bho: java(tm) plug-in 2 ssv helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
o2 - bho: jqsiestartdetectorimpl - {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
o3 - toolbar: google toolbar - {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\googletoolbar.dll
o3 - toolbar: browsing protection toolbar - {265eee8e-3228-44d3-aea5-f7fdf5860049} - c:\program files\pc veilig\nrs\iescript\baselitmus.dll
o4 - hklm\..\run: [startccc] c:\program files\ati technologies\ati.ace\core-static\clistart.exe
o4 - hklm\..\run: [rthdcpl] rthdcpl.exe
o4 - hklm\..\run: [alcmtr] alcmtr.exe
o4 - hklm\..\run: [nerofiltercheck] c:\windows\system32\nerocheck.exe
o4 - hklm\..\run: [f-secure manager] c:\program files\pc veilig\common\fsm32.exe /splash
o4 - hklm\..\run: [f-secure tnb] c:\program files\pc veilig\fsgui\tnbutil.exe /checkall /waitforsw
o4 - hklm\..\run: [ssbkgdupdate] c:\program files\common files\scansoft shared\ssbkgdupdate\ssbkgdupdate.exe -embedding -boot
o4 - hklm\..\run: [paperport ptd] c:\program files\scansoft\paperport\pptd40nt.exe
o4 - hklm\..\run: [indexsearch] c:\program files\scansoft\paperport\indexsearch.exe
o4 - hklm\..\run: [pport11reminder] c:\program files\scansoft\paperport\ereg\ereg.exe -r c:\documents and settings\all users\application data\scansoft\paperport\11\config\ereg\ereg.ini
o4 - hklm\..\run: [brmfcwnd] c:\program files\brother\brmfcmon\brmfcwnd.exe /autorun
o4 - hklm\..\run: [controlcenter3] c:\program files\brother\controlcenter3\brctrcen.exe /autorun
o4 - hklm\..\run: [wirelessmouse] c:\program files\trust\trust r-series mouse and keyboard\startautorun.exe mousedrv.exe
o4 - hklm\..\run: [adobe reader speed launcher] c:\program files\adobe\reader 9.0\reader\reader_sl.exe
o4 - hklm\..\run: [adobe arm] c:\program files\common files\adobe\arm\1.0\adobearm.exe
o4 - hklm\..\run: [sunjavaupdatesched] c:\program files\java\jre6\bin\jusched.exe
o4 - hkcu\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe
o4 - hkcu\..\run: [swg] c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe
o4 - hkus\s-1-5-19\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'lokale service')
o4 - hkus\s-1-5-20\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'netwerkservice')
o4 - hkus\s-1-5-18\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'system')
o4 - hkus\.default\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'default user')
o8 - extra context menu item: add to google photos screensa&ver - res://c:\windows\system32\gphotos.scr/200
o8 - extra context menu item: e&xporteren naar microsoft excel - res://c:\progra~1\micros~2\office10\excel.exe/3000
o9 - extra button: (no name) - {53f6fccd-9e22-4d71-86ea-6e43136192ab} - (no file)
o9 - extra button: (no name) - {925dab62-f9ac-4221-806a-057bfb1014aa} - (no file)
o9 - extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra 'tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - c:\windows\network diagnostic\xpnetdiag.exe
o9 - extra button: messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o9 - extra 'tools' menuitem: windows messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o16 - dpf: {1e54d648-b804-468d-bc78-4affed8e262e} (system requirements lab) - [noparse]http://www.systemrequirementslab.com/srl_bin/sysreqlab_srl.cab[/noparse]
o16 - dpf: {20a60f0d-9afa-4515-a0fd-83bd84642501} (checkers class) - [noparse]http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab[/noparse]
o16 - dpf: {40f576ad-8680-4f9e-9490-99d069cd665f} (system requirements lab class) - [noparse]http://srtest-cdn.systemrequirementslab.com.s3.amazonaws.com/bin/sysreqlabdetect.cab[/noparse]
o16 - dpf: {474f00f5-3853-492c-ac3a-476512bbc336} (uploadlistview class) - [noparse]http://picasaweb.google.nl/s/v/48.11/uploader2.cab[/noparse]
o16 - dpf: {5d6f45b3-9043-443d-a792-115447494d24} (unoctrl class) - [noparse]http://messenger.zone.msn.com/messengergamescontent/gamecontent/nl/uno1/game_uno1.cab[/noparse]
o16 - dpf: {bff1950d-b1b4-4ae8-b842-b2ccf06d9a1b} (zylom games player) - [noparse]http://game02.zylom.com/activex/zylomgamesplayer.cab[/noparse]
o16 - dpf: {c3f79a2b-b9b4-4a66-b012-3ee46475b072} (messengerstatsclient class) - [noparse]http://messenger.zone.msn.com/binary/messengerstatspaclient.cab56907.cab[/noparse]
o18 - filter: x-sdch - {b1759355-3eec-4c1e-b0f1-b719fe26e377} - c:\program files\google\google toolbar\component\fastsearch_a8904fb862bd9564.dll
o23 - service: ati hotkey poller - ati technologies inc. - c:\windows\system32\ati2evxx.exe
o23 - service: ati smart - unknown owner - c:\windows\system32\ati2sgag.exe
o23 - service: fsgkhs (f-secure gatekeeper handler starter) - f-secure corporation - c:\program files\pc veilig\anti-virus\fsgk32st.exe
o23 - service: f-secure anti-virus firewall daemon (fsdfwd) - f-secure corporation - c:\program files\pc veilig\fwes\program\fsdfwd.exe
o23 - service: fsma - f-secure corporation - c:\program files\pc veilig\common\fsma32.exe
o23 - service: f-secure orsp client (fsorspclient) - f-secure corporation - c:\program files\pc veilig\orsp client\fsorsp.exe
o23 - service: google updateservice (gupdate1c9c917b32046bc) (gupdate1c9c917b32046bc) - google inc. - c:\program files\google\update\googleupdate.exe
o23 - service: google software updater (gusvc) - google - c:\program files\google\common\google updater\googleupdaterservice.exe
o23 - service: java quick starter (javaquickstarterservice) - sun microsystems, inc. - c:\program files\java\jre6\bin\jqs.exe
o23 - service: keyboard and mouse communication service (kmwdservice) - uassoft.com - c:\program files\trust\trust r-series mouse and keyboard\kmwdsrv.exe
--
end of file - 9638 bytes
[/hjt]