Vraag & Antwoord

Beveiliging & privacy

Computer wel/niet gekaapt?

Hallo, zou iemand naar onderstaand HJT-log willen kijken. Ik heb geen problemen momenteel, maar ik ben er niet helemaal zeker van of iemand mijn computer gekaapt heeft. Ik zag nl. zéér kortstondig onder in beeld een bericht met een stukje tekst "hack". Vandaar deze vraag. [hjt] Logfile of HijackThis v1.99.1 Scan saved at 1:31:48, on 19-7-2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16473) [b:497257d659]Running processes:[/b:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]smss.exe[/color:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]winlogon.exe[/color:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]services.exe[/color:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]lsass.exe[/color:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]svchost.exe[/color:497257d659] [color=teal:497257d659]c:\program files\windows defender\[/color:497257d659][color=blue:497257d659]msmpeng.exe[/color:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]svchost.exe[/color:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]spoolsv.exe[/color:497257d659] [color=teal:497257d659]c:\program files\a-squared anti-malware\[/color:497257d659][color=blue:497257d659]a2service.exe[/color:497257d659] [color=teal:497257d659]c:\program files\a-squared free\[/color:497257d659][color=blue:497257d659]a2service.exe[/color:497257d659] [color=teal:497257d659]c:\program files\lavasoft\ad-aware 2007\[/color:497257d659][color=blue:497257d659]aawservice.exe[/color:497257d659] [color=teal:497257d659]c:\program files\grisoft\avg anti-spyware 7.5\[/color:497257d659][color=blue:497257d659]guard.exe[/color:497257d659] [color=teal:497257d659]c:\program files\comodo\cboclean\[/color:497257d659][color=blue:497257d659]bocore.exe[/color:497257d659] [color=teal:497257d659]c:\program files\comodo\firewall\[/color:497257d659][color=blue:497257d659]cmdagent.exe[/color:497257d659] [color=teal:497257d659]c:\program files\eset\[/color:497257d659][color=blue:497257d659]nod32krn.exe[/color:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]nvsvc32.exe[/color:497257d659] [color=teal:497257d659]c:\program files\prevx1\[/color:497257d659][color=blue:497257d659]pxagent.exe[/color:497257d659] [color=teal:497257d659]c:\program files\sandboxie\[/color:497257d659][color=blue:497257d659]sbiesvc.exe[/color:497257d659] [color=teal:497257d659]c:\program files\siteadvisor\6066\[/color:497257d659][color=blue:497257d659]saservice.exe[/color:497257d659] [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]searchindexer.exe[/color:497257d659] [color=teal:497257d659]c:\windows\[/color:497257d659][color=blue:497257d659]explorer.exe[/color:497257d659] [color=teal:497257d659]c:\program files\billp studios\winpatrol\[/color:497257d659][color=blue:497257d659]winpatrol.exe[/color:497257d659] [color=teal:497257d659]c:\program files\windows defender\[/color:497257d659][color=blue:497257d659]msascui.exe[/color:497257d659] [color=teal:497257d659]c:\program files\eset\[/color:497257d659][color=blue:497257d659]nod32kui.exe[/color:497257d659] [color=teal:497257d659]c:\program files\grisoft\avg anti-spyware 7.5\[/color:497257d659][color=blue:497257d659]avgas.exe[/color:497257d659] [color=teal:497257d659]c:\program files\prevx1\[/color:497257d659][color=blue:497257d659]pxconsole.exe[/color:497257d659] [color=teal:497257d659]c:\progra~1\comodo\cboclean\[/color:497257d659][color=blue:497257d659]boc423.exe[/color:497257d659] [color=teal:497257d659]c:\program files\comodo\firewall\[/color:497257d659][color=blue:497257d659]cpf.exe[/color:497257d659] [color=teal:497257d659]c:\program files\hdd health\[/color:497257d659][color=blue:497257d659]hddhealth.exe[/color:497257d659] [color=teal:497257d659]c:\program files\siteadvisor\6066\[/color:497257d659][color=blue:497257d659]siteadv.exe[/color:497257d659] [color=teal:497257d659]c:\program files\beveiliging\diverse beveiligingen\hijackthis\[/color:497257d659][color=blue:497257d659]hijackthis.exe[/color:497257d659] [color=teal:497257d659]c:\program files\internet explorer\[/color:497257d659][color=blue:497257d659]iexplore.exe[/color:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\main[/color:497257d659],default_search_url = [u:497257d659][noparse]http://www.google.com/ie[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\main[/color:497257d659],search bar = [u:497257d659][noparse]http://www.google.com/ie[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\main[/color:497257d659],search page = [u:497257d659][noparse]http://www.google.com[/noparse][/u:497257d659] [color=silver:497257d659]r0 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\main[/color:497257d659],start page = [u:497257d659][noparse]http://www.google.nl[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hklm\software\microsoft\internet explorer\main[/color:497257d659],default_page_url = [u:497257d659][noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hklm\software\microsoft\internet explorer\main[/color:497257d659],default_search_url = [u:497257d659][noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hklm\software\microsoft\internet explorer\main[/color:497257d659],search bar = [u:497257d659][noparse]http://www.google.com/ie[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hklm\software\microsoft\internet explorer\main[/color:497257d659],search page = [u:497257d659][noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse][/u:497257d659] [color=silver:497257d659]r0 -[/color:497257d659] [color=brown:497257d659]hklm\software\microsoft\internet explorer\main[/color:497257d659],start page = [u:497257d659][noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\search[/color:497257d659],default_search_url = [u:497257d659][noparse]http://www.google.com/ie[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\search[/color:497257d659],searchassistant = [u:497257d659][noparse]http://www.google.com/ie[/noparse][/u:497257d659] [color=silver:497257d659]r0 -[/color:497257d659] [color=brown:497257d659]hklm\software\microsoft\internet explorer\search[/color:497257d659],searchassistant = [u:497257d659][noparse]http://www.google.com/ie[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\searchurl[/color:497257d659],(default) = [u:497257d659][noparse]http://www.google.com/search?q=%s[/noparse][/u:497257d659] [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hklm\software\microsoft\internet explorer\searchurl[/color:497257d659],(default) = [u:497257d659][noparse]http://www.google.com/keyword/%s[/noparse][/u:497257d659] [color=silver:497257d659]r0 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\main[/color:497257d659],local page = [color=silver:497257d659]r0 -[/color:497257d659] [color=brown:497257d659]hklm\software\microsoft\internet explorer\main[/color:497257d659],local page = [color=silver:497257d659]r1 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\windows\currentversion\internet settings[/color:497257d659],proxyserver = proxy.12move.nl:8080 [color=silver:497257d659]r0 -[/color:497257d659] [color=brown:497257d659]hkcu\software\microsoft\internet explorer\toolbar[/color:497257d659],linksfoldername = koppelingen [color=silver:497257d659]f2 -[/color:497257d659] [color=brown:497257d659]reg[/color:497257d659]:system.ini: userinit=[color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]userinit.exe[/color:497257d659] [color=silver:497257d659]o2 -[/color:497257d659] [color=brown:497257d659]bho[/color:497257d659]: (no name) - [color=orange:497257d659]{089fd14d-132b-48fc-8861-0048ae113215}[/color:497257d659] - [color=teal:497257d659]c:\program files\siteadvisor\6066\[/color:497257d659][color=blue:497257d659]siteadv.dll[/color:497257d659] [color=silver:497257d659]o2 -[/color:497257d659] [color=brown:497257d659]bho[/color:497257d659]: (no name) - [color=orange:497257d659]{53707962-6f74-2d53-2644-206d7942484f}[/color:497257d659] - [color=teal:497257d659]c:\progra~1\beveil~1\antisp~1\spybot~1\[/color:497257d659][color=blue:497257d659]sdhelper.dll[/color:497257d659] [color=silver:497257d659]o2 -[/color:497257d659] [color=brown:497257d659]bho[/color:497257d659]: malicious scripts scanner - [color=orange:497257d659]{55ea1964-f5e4-4d6a-b9b2-125b37655fcb}[/color:497257d659] - [color=teal:497257d659]c:\documents and settings\all users\application data\prevx\[/color:497257d659][color=blue:497257d659]pxbho.dll[/color:497257d659] [color=silver:497257d659]o2 -[/color:497257d659] [color=brown:497257d659]bho[/color:497257d659]: ssvhelper class - [color=orange:497257d659]{761497bb-d6f0-462c-b6eb-d4daf1d92d43}[/color:497257d659] - [color=teal:497257d659]c:\program files\java\jre1.5.0_10\bin\[/color:497257d659][color=blue:497257d659]ssv.dll[/color:497257d659] [color=silver:497257d659]o3 -[/color:497257d659] [color=brown:497257d659]toolbar[/color:497257d659]: mcafee siteadvisor - [color=orange:497257d659]{0bf43445-2f28-4351-9252-17fe6e806aa0}[/color:497257d659] - [color=teal:497257d659]c:\program files\siteadvisor\6066\[/color:497257d659][color=blue:497257d659]siteadv.dll[/color:497257d659] [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hklm\..\run[/color:497257d659]: [b:497257d659][winpatrol][/b:497257d659] [color=teal:497257d659]c:\program files\billp studios\winpatrol\[/color:497257d659][color=blue:497257d659]winpatrol.exe[/color:497257d659] [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hklm\..\run[/color:497257d659]: [b:497257d659][windows defender][/b:497257d659] [color=teal:497257d659]c:\program files\windows defender\[/color:497257d659][color=blue:497257d659]msascui.exe[/color:497257d659] -hide [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hklm\..\run[/color:497257d659]: [b:497257d659][nod32kui][/b:497257d659] [color=teal:497257d659]c:\program files\eset\[/color:497257d659][color=blue:497257d659]nod32kui.exe[/color:497257d659] /waitservice [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hklm\..\run[/color:497257d659]: [b:497257d659][nvcpldaemon][/b:497257d659] rundll32.exe [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]nvcpl.dll[/color:497257d659],nvstartup [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hklm\..\run[/color:497257d659]: [b:497257d659][!avg anti-spyware][/b:497257d659] [color=teal:497257d659]c:\program files\grisoft\avg anti-spyware 7.5\[/color:497257d659][color=blue:497257d659]avgas.exe[/color:497257d659] /minimized [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hklm\..\run[/color:497257d659]: [b:497257d659][prevxone][/b:497257d659] [color=teal:497257d659]c:\program files\prevx1\[/color:497257d659][color=blue:497257d659]pxconsole.exe[/color:497257d659] [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hklm\..\run[/color:497257d659]: [b:497257d659][boc-423][/b:497257d659] [color=teal:497257d659]c:\progra~1\comodo\cboclean\[/color:497257d659][color=blue:497257d659]boc423.exe[/color:497257d659] [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hklm\..\run[/color:497257d659]: [b:497257d659][comodo firewall pro][/b:497257d659] [color=teal:497257d659]c:\program files\comodo\firewall\[/color:497257d659][color=blue:497257d659]cpf.exe[/color:497257d659] /background [color=silver:497257d659]o4 -[/color:497257d659] [color=brown:497257d659]hkcu\..\run[/color:497257d659]: [b:497257d659][hddhealth][/b:497257d659] [color=teal:497257d659]c:\program files\hdd health\[/color:497257d659][color=blue:497257d659]hddhealth.exe[/color:497257d659] -wl [color=silver:497257d659]o8 -[/color:497257d659] [color=brown:497257d659]extra context menu item[/color:497257d659]: e&xporteren naar microsoft excel - res://[color=teal:497257d659]c:\progra~1\micros~2\office12\[/color:497257d659][color=blue:497257d659]excel.exe[/color:497257d659]/3000 [color=silver:497257d659]o9 -[/color:497257d659] [color=brown:497257d659]extra button[/color:497257d659]: (no name) - [color=orange:497257d659]{08b0e5c0-4fcb-11cf-aaa5-00401c608501}[/color:497257d659] - [color=teal:497257d659]c:\program files\java\jre1.5.0_10\bin\[/color:497257d659][color=blue:497257d659]ssv.dll[/color:497257d659] [color=silver:497257d659]o9 -[/color:497257d659] [color=brown:497257d659]extra 'tools' menuitem[/color:497257d659]: sun java console - [color=orange:497257d659]{08b0e5c0-4fcb-11cf-aaa5-00401c608501}[/color:497257d659] - [color=teal:497257d659]c:\program files\java\jre1.5.0_10\bin\[/color:497257d659][color=blue:497257d659]ssv.dll[/color:497257d659] [color=silver:497257d659]o9 -[/color:497257d659] [color=brown:497257d659]extra button[/color:497257d659]: (no name) - [color=orange:497257d659]{85d1f590-48f4-11d9-9669-0800200c9a66}[/color:497257d659] - [color=teal:497257d659]%windir%\[/color:497257d659][color=blue:497257d659]bdoscandel.exe[/color:497257d659] [color=red:497257d659](file missing)[/color:497257d659] [color=silver:497257d659]o9 -[/color:497257d659] [color=brown:497257d659]extra 'tools' menuitem[/color:497257d659]: uninstall bitdefender online scanner v8 - [color=orange:497257d659]{85d1f590-48f4-11d9-9669-0800200c9a66}[/color:497257d659] - [color=teal:497257d659]%windir%\[/color:497257d659][color=blue:497257d659]bdoscandel.exe[/color:497257d659] [color=red:497257d659](file missing)[/color:497257d659] [color=silver:497257d659]o9 -[/color:497257d659] [color=brown:497257d659]extra button[/color:497257d659]: research - [color=orange:497257d659]{92780b25-18cc-41c8-b9be-3c9c571a8263}[/color:497257d659] - [color=teal:497257d659]c:\progra~1\micros~2\office12\[/color:497257d659][color=blue:497257d659]refiebar.dll[/color:497257d659] [color=silver:497257d659]o9 -[/color:497257d659] [color=brown:497257d659]extra button[/color:497257d659]: (no name) - [color=orange:497257d659]{e2e2dd38-d088-4134-82b7-f2ba38496583}[/color:497257d659] - [color=teal:497257d659]%windir%\network diagnostic\[/color:497257d659][color=blue:497257d659]xpnetdiag.exe[/color:497257d659] [color=red:497257d659](file missing)[/color:497257d659] [color=silver:497257d659]o9 -[/color:497257d659] [color=brown:497257d659]extra 'tools' menuitem[/color:497257d659]: @xpsp3res.dll,-20001 - [color=orange:497257d659]{e2e2dd38-d088-4134-82b7-f2ba38496583}[/color:497257d659] - [color=teal:497257d659]%windir%\network diagnostic\[/color:497257d659][color=blue:497257d659]xpnetdiag.exe[/color:497257d659] [color=red:497257d659](file missing)[/color:497257d659] [color=silver:497257d659]o11 -[/color:497257d659] [color=brown:497257d659]options group[/color:497257d659]: [b:497257d659][international][/b:497257d659] international* [color=silver:497257d659]o14 -[/color:497257d659] [color=brown:497257d659]iereset.inf[/color:497257d659]: start_page_url=[u:497257d659][noparse]http://www.12move.nl[/noparse][/u:497257d659] [color=silver:497257d659]o16 -[/color:497257d659] [color=brown:497257d659]dpf[/color:497257d659]: [color=orange:497257d659]{17492023-c23a-453e-a040-c7c580bbf700}[/color:497257d659] (windows genuine advantage validation tool) - [u:497257d659][noparse]http://go.microsoft.com/fwlink/?linkid=39204[/noparse][/u:497257d659] [color=silver:497257d659]o16 -[/color:497257d659] [color=brown:497257d659]dpf[/color:497257d659]: [color=orange:497257d659]{30528230-99f7-4bb4-88d8-fa1d4f56a2ab}[/color:497257d659] - [color=silver:497257d659]o16 -[/color:497257d659] [color=brown:497257d659]dpf[/color:497257d659]: [color=orange:497257d659]{512fc5a1-7de1-43f1-bc0c-371622fcb409}[/color:497257d659] (totalscan installer class) - [u:497257d659][noparse]http://www.nanoscan.com/as/v1/cabs/ascstubie.cab[/noparse][/u:497257d659] [color=silver:497257d659]o16 -[/color:497257d659] [color=brown:497257d659]dpf[/color:497257d659]: [color=orange:497257d659]{5d86ddb5-bdf9-441b-9e9e-d4730f4ee499}[/color:497257d659] (bdscanonline control) - [u:497257d659][noparse]http://download.bitdefender.com/resources/scan8/oscan8.cab[/noparse][/u:497257d659] [color=silver:497257d659]o16 -[/color:497257d659] [color=brown:497257d659]dpf[/color:497257d659]: [color=orange:497257d659]{5ed80217-570b-4da9-bf44-be107c0ec166}[/color:497257d659] - [u:497257d659][noparse]http://cdn.scan.safety.live.com/resource/download/scanner/wlscbase969.cab[/noparse][/u:497257d659] [color=silver:497257d659]o16 -[/color:497257d659] [color=brown:497257d659]dpf[/color:497257d659]: [color=orange:497257d659]{6e32070a-766d-4ee6-879c-dc1fa91d2fc3}[/color:497257d659] (muwebcontrol class) - [u:497257d659][noparse]http://update.microsoft.com/microsoftupdate/v6/v5controls/en/x86/client/muweb_site.cab?1162239558168[/noparse][/u:497257d659] [color=silver:497257d659]o16 -[/color:497257d659] [color=brown:497257d659]dpf[/color:497257d659]: [color=orange:497257d659]{bb21f850-63f4-4ec9-bf9d-565bd30c9ae9}[/color:497257d659] - [u:497257d659][noparse]http://ax.emsisoft.com/asquared.cab[/noparse][/u:497257d659] [color=silver:497257d659]o18 -[/color:497257d659] [color=brown:497257d659]protocol[/color:497257d659]: ms-help - [color=orange:497257d659]{314111c7-a502-11d2-bbca-00c04f8ec294}[/color:497257d659] - [color=teal:497257d659]c:\program files\common files\microsoft shared\help\[/color:497257d659][color=blue:497257d659]hxds.dll[/color:497257d659] [color=silver:497257d659]o18 -[/color:497257d659] [color=brown:497257d659]protocol[/color:497257d659]: siteadvisor - [color=orange:497257d659]{3a5dc592-7723-4eaa-9ee6-af4222bcf879}[/color:497257d659] - [color=teal:497257d659]c:\program files\siteadvisor\6066\[/color:497257d659][color=blue:497257d659]siteadv.dll[/color:497257d659] [color=silver:497257d659]o18 -[/color:497257d659] [color=brown:497257d659]protocol[/color:497257d659]: wlmailhtml - [color=orange:497257d659]{03c514a3-1efb-4856-9f99-10d7be1653c0}[/color:497257d659] - [color=teal:497257d659]c:\program files\windows live mail desktop\[/color:497257d659][color=blue:497257d659]mailcomm.dll[/color:497257d659] [color=silver:497257d659]o18 -[/color:497257d659] [color=brown:497257d659]filter hijack[/color:497257d659]: text/xml - [color=orange:497257d659]{807563e5-5146-11d5-a672-00b0d022e945}[/color:497257d659] - [color=teal:497257d659]c:\progra~1\common~1\micros~1\office12\[/color:497257d659][color=blue:497257d659]msoxmlmf.dll[/color:497257d659] [color=silver:497257d659]o20 -[/color:497257d659] [color=brown:497257d659]winlogon notify[/color:497257d659]: wgalogon - [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]wgalogon.dll[/color:497257d659] [color=silver:497257d659]o21 -[/color:497257d659] [color=brown:497257d659]ssodl[/color:497257d659]: wpdshserviceobj - [color=orange:497257d659]{aaa288ba-9a4c-45b0-95d7-94d524869db5}[/color:497257d659] - [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]wpdshserviceobj.dll[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: a-squared anti-malware service (a2antimalware) - emsi software gmbh - [color=teal:497257d659]c:\program files\a-squared anti-malware\[/color:497257d659][color=blue:497257d659]a2service.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: a-squared free service (a2free) - emsi software gmbh - [color=teal:497257d659]c:\program files\a-squared free\[/color:497257d659][color=blue:497257d659]a2service.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: ad-aware 2007 service (aawservice) - lavasoft ab - [color=teal:497257d659]c:\program files\lavasoft\ad-aware 2007\[/color:497257d659][color=blue:497257d659]aawservice.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: adobe lm service - adobe systems - [color=teal:497257d659]c:\program files\common files\adobe systems shared\service\[/color:497257d659][color=blue:497257d659]adobelmsvc.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: avg anti-spyware guard - grisoft s.r.o. - [color=teal:497257d659]c:\program files\grisoft\avg anti-spyware 7.5\[/color:497257d659][color=blue:497257d659]guard.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: bocore - comodo - [color=teal:497257d659]c:\program files\comodo\cboclean\[/color:497257d659][color=blue:497257d659]bocore.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: comodo application agent (cmdagent) - comodo - [color=teal:497257d659]c:\program files\comodo\firewall\[/color:497257d659][color=blue:497257d659]cmdagent.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: nod32 kernel service (nod32krn) - eset - [color=teal:497257d659]c:\program files\eset\[/color:497257d659][color=blue:497257d659]nod32krn.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: nvidia display driver service (nvsvc) - nvidia corporation - [color=teal:497257d659]c:\windows\system32\[/color:497257d659][color=blue:497257d659]nvsvc32.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: prevx agent (prevxagent) - unknown owner - [color=teal:497257d659]c:\program files\prevx1\[/color:497257d659][color=blue:497257d659]pxagent.exe[/color:497257d659] -f [color=red:497257d659](file missing)[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: sisoftware database agent service (sandradatasrv) - sisoftware - [color=teal:497257d659]c:\program files\sisoftware\sisoftware sandra lite xib\win32\[/color:497257d659][color=blue:497257d659]rpcdatasrv.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: sisoftware sandra agent service (sandrathesrv) - sisoftware - [color=teal:497257d659]c:\program files\sisoftware\sisoftware sandra lite xib\[/color:497257d659][color=blue:497257d659]rpcsandrasrv.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: sandboxie service (sbiesvc) - tzuk - [color=teal:497257d659]c:\program files\sandboxie\[/color:497257d659][color=blue:497257d659]sbiesvc.exe[/color:497257d659] [color=silver:497257d659]o23 -[/color:497257d659] [color=brown:497257d659]service[/color:497257d659]: siteadvisor service - mcafee, inc. - [color=teal:497257d659]c:\program files\siteadvisor\6066\[/color:497257d659][color=blue:497257d659]saservice.exe[/color:497257d659] [/hjt]