Trage verbinding

petr@

07-08-2012 17:45

Hallo,
Ik zet hier een logje van mijn zoon neer want die heeft een hele trage verbinding. En UPC weet het ook niet maar ik heb het idee dat er wat op zit want er niet hoort. Dit is sinds een week .
le of Trend Micro HijackThis v2.0.4
Scan saved at 17:39:02, on 7-8-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Clownfish\Clownfish.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\admin\Downloads\HijackThis (2).exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: “C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe” /CHECKNOW
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe” /WinStart
O4 - HKCU\..\Run: “C:\Program Files (x86)\Skype\Phone\Skype.exe” /minimized /regrun
O4 - HKCU\..\Run: “C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe” -autorun
O4 - HKCU\..\Run: “C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe” /c
O4 - HKCU\..\Run: “C:\Program Files (x86)\Clownfish\Clownfish.exe”
O4 - HKCU\..\Run: C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-20\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘NETWORK SERVICE’)
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Hotspot Shield Service (hshld) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe (file missing)
O23 - Service: Hotspot Shield Routing Service (HssSrv) - AnchorFree Inc. - C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE (file missing)
O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
–
End of file - 8493 bytes
fazantje

07-08-2012 18:38

Hoi Petra,
Waar is het logje van MBAM en wat vond de online scan:S
Groetjes Huib;)
petr@

07-08-2012 18:49

Oja stom ik heb dat logje van de MBAM hier niet gezet maar het had wel 4 objecten gevonden en die had ik verwijderd. Ik zal even een nieuwe maken en hier neerzetten. Was de online scanner ook vergeten, housecall is nu aan het draaien.
fazantje

07-08-2012 18:53

Hoi Petra,
Graag het oude MBAM logje.
Een nieuw logje zie ik niet wat er gevonden was.
Open MBAM, klik op logbestanden en open het logbestand met de datum waar die besmettingen in zitten.
Alles selecteren, kopiëren en hier plakken.
Groetjes Huib;)
petr@

07-08-2012 18:56

s Anti-Malware 1.62.0.1300
www.malwarebytes.org
Databaseversie: v2012.08.07.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
admin :: TAMER
7-8-2012 17:29:13
mbam-log-2012-08-07 (17-29-13).txt
Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 190220
Verstreken tijd: 2 minuut/minuten, 11 seconde(n)
Geheugenprocessen gedetecteerd: 1
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Templates\THEMECPL.exe (Backdoor.Messa) -> 1716 -> Zal worden verwijderd tijdens het herstarten.
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 1
HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Succesvol in quarantaine geplaatst en verwijderd.
Registerwaarden gedetecteerd: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Microsoft® Windows® Operating System (Backdoor.Messa) -> Data: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Templates\THEMECPL.exe -> Succesvol in quarantaine geplaatst en verwijderd.
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 1
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Templates\THEMECPL.exe (Backdoor.Messa) -> Zal worden verwijderd tijdens het herstarten.
(einde)
Hier het het logje wat ik was vergeten en housecall heeft niets gevonden.
Argus

07-08-2012 19:48

Installeer eens een Virusscanner
petr@

07-08-2012 19:56

Er zit een virus scanner op. Microsoft Security Essentials. Ik vond het zelf ook al raar dat ik hem niet terug ziet in het logje. Wij gaan echt niet het internet op zonder virus scanner.
fazantje

07-08-2012 20:49

Hoi Petra,
Ik zie google chrome.
Ieder zo zijn/haar eigen keuze, maar ik kom met regelmaat problemen tegen met chrome, dus ik zou deze verwijderen.
Voor de zekerheid even het volgende doen:
Download combofix.exe hier.
Schakel jou virus scanner nu uit.
Dit doe je rechts onderin jou taakbalk
ComboFix zal wanneer de Recovery Console niet geïnstalleerd is, voorstellen om deze te downloaden en te installeren. Sta dit toe.
Wanneer de Recovery Console geïnstalleerd is, laat je ComboFix de computer scannen.
Wanneer ComboFix start, kan het zijn dat je een Error melding krijgt dat de “contents of the ComboFix package has been compromised”.
Ga niet verder met de instructies, maar download ComboFix opnieuw. Deze melding kan verschijnen wanneer een file-infector (Virut) actief is op de computer.
Krijg je deze melding dan meld je dit.
Wanneer ComboFix klaar is met scannen, dit kan eventueel na een reboot zijn, opent er een logfile (combofix.txt).
Wees geduldig en denk niet van de scanner is op tilt.
Post de inhoud van dit bestandje samen met een nieuw HijackThis logje.
Succes,
Huib;)
petr@

07-08-2012 21:19

HijackThis v2.0.4
Scan saved at 21:18:02, on 7-8-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Clownfish\Clownfish.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\admin\Downloads\HijackThis (2).exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: “C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe” /CHECKNOW
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe” /WinStart
O4 - HKCU\..\Run: “C:\Program Files (x86)\Skype\Phone\Skype.exe” /minimized /regrun
O4 - HKCU\..\Run: “C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe” -autorun
O4 - HKCU\..\Run: “C:\Program Files (x86)\Clownfish\Clownfish.exe”
O4 - HKCU\..\Run: C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Hotspot Shield Service (hshld) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe (file missing)
O23 - Service: Hotspot Shield Routing Service (HssSrv) - AnchorFree Inc. - C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE (file missing)
O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
–
End of file - 7690 bytes
8-2012 21:09:08.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3767.2403
Gestart vanuit: c:\users\admin\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Nieuw herstelpunt werd aangemaakt
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2012-07-07 to 2012-08-07 ))))))))))))))))))))))))))))))
.
.
2012-08-07 08:58 . 2012-06-29 10:04 9133488 —-a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{08A76C4A-3075-4038-88EA-7D8A1EA4DB15}\mpengine.dll
2012-08-05 20:56 . 2012-06-29 10:04 9133488 —-a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-08-05 16:24 . 2012-08-05 16:24 ——– d—–w- c:\programdata\Hotspot Shield
2012-08-05 14:48 . 2012-08-05 21:46 ——– d—–w- c:\program files (x86)\Hotspot Shield
2012-08-05 11:32 . 2012-08-06 22:24 ——– d—–w- c:\users\admin\AppData\Local\Microsoft Games
2012-08-01 01:01 . 2012-08-01 01:01 ——– d—–w- c:\program files (x86)\MSXML 4.0
2012-07-30 19:19 . 2012-07-30 19:19 ——– d—–w- c:\users\admin\AppData\Local\Nero
2012-07-30 14:00 . 2012-07-30 14:00 ——– d—–w- c:\program files (x86)\Common Files\LightScribe
2012-07-30 13:36 . 2012-07-30 13:57 ——– d—–w- c:\programdata\LightScribe
2012-07-30 13:36 . 2012-07-30 13:59 ——– d—–w- c:\users\admin\AppData\Roaming\Nero
2012-07-30 13:20 . 2012-07-30 13:22 ——– d—–w- c:\program files (x86)\Common Files\Nero
2012-07-30 13:20 . 2012-07-30 13:34 ——– d—–w- c:\program files (x86)\Nero
2012-07-30 13:20 . 2012-07-30 13:34 ——– d—–w- c:\programdata\Nero
2012-07-30 13:14 . 2009-09-04 15:29 1974616 —-a-w- c:\windows\SysWow64\D3DCompiler_42.dll
2012-07-30 13:13 . 2009-09-04 15:29 1892184 —-a-w- c:\windows\SysWow64\D3DX9_42.dll
2012-07-30 13:13 . 2008-10-15 04:22 4379984 —-a-w- c:\windows\SysWow64\D3DX9_40.dll
2012-07-30 13:13 . 2007-07-19 16:14 3727720 —-a-w- c:\windows\SysWow64\d3dx9_35.dll
2012-07-30 13:12 . 2007-05-16 14:45 3497832 —-a-w- c:\windows\SysWow64\d3dx9_34.dll
2012-07-29 20:26 . 2012-07-29 20:26 ——– d—–w- c:\program files (x86)\Clownfish
2012-07-28 19:49 . 2012-07-28 19:49 ——– d—–w- c:\windows\.jagex_cache_32
2012-07-24 20:11 . 2012-07-24 20:11 41704 —-a-w- c:\windows\system32\drivers\hssdrv6.sys
2012-07-24 20:11 . 2012-07-24 20:11 38632 —-a-w- c:\windows\system32\drivers\taphss.sys
2012-07-14 15:57 . 2012-07-14 15:57 ——– d—–w- c:\program files (x86)\Common Files\Java
2012-07-14 15:56 . 2012-07-14 15:56 ——– d—–w- c:\program files (x86)\Oracle
2012-07-13 16:29 . 2012-07-13 16:29 ——– d—–w- c:\users\admin\AppData\Roaming\Unity
2012-07-13 16:22 . 2012-07-13 16:22 ——– d—–w- c:\users\admin\AppData\Local\Unity
2012-07-12 20:09 . 2012-06-12 03:08 3148800 —-a-w- c:\windows\system32\win32k.sys
2012-07-12 15:15 . 2012-07-12 15:15 ——– d—–w- c:\users\admin\AppData\Roaming\Malwarebytes
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-03 12:47 . 2012-05-29 15:59 70344 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-03 12:47 . 2012-05-29 15:59 426184 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-07-12 20:07 . 2012-05-29 15:49 59701280 —-a-w- c:\windows\system32\MRT.exe
2012-07-05 20:06 . 2012-05-29 16:00 772544 —-a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-07-05 20:06 . 2012-05-29 16:00 687544 —-a-w- c:\windows\SysWow64\deployJava1.dll
2012-07-03 11:46 . 2012-05-29 16:02 24904 —-a-w- c:\windows\system32\drivers\mbam.sys
2012-06-27 11:22 . 2011-03-28 16:36 19736 —-a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-06-14 12:29 . 2012-06-14 12:29 283200 —-a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-06-02 22:19 . 2012-06-21 16:11 38424 —-a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-21 16:11 2428952 —-a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-21 16:11 57880 —-a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-21 16:11 44056 —-a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-21 16:11 701976 —-a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-21 16:11 2622464 —-a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-21 16:11 99840 —-a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-21 16:11 186752 —-a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:15 . 2012-06-21 16:11 36864 —-a-w- c:\windows\system32\wuapp.exe
2012-05-29 16:04 . 2012-07-03 14:20 927800 ——w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{51601EAC-736C-4C1C-9878-0D33C6E0B8A9}\gapaengine.dll
2012-05-29 16:04 . 2012-06-13 14:59 927800 ——w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2012-05-29 15:42 . 2012-05-29 15:42 91648 —-a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-05-29 15:42 . 2012-05-29 15:42 89088 —-a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-05-29 15:42 . 2012-05-29 15:42 89088 —-a-w- c:\windows\system32\ie4uinit.exe
2012-05-29 15:42 . 2012-05-29 15:42 86528 —-a-w- c:\windows\SysWow64\iesysprep.dll
2012-05-29 15:42 . 2012-05-29 15:42 85504 —-a-w- c:\windows\system32\iesetup.dll
2012-05-29 15:42 . 2012-05-29 15:42 82432 —-a-w- c:\windows\system32\icardie.dll
2012-05-29 15:42 . 2012-05-29 15:42 76800 —-a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-05-29 15:42 . 2012-05-29 15:42 76800 —-a-w- c:\windows\system32\tdc.ocx
2012-05-29 15:42 . 2012-05-29 15:42 74752 —-a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-05-29 15:42 . 2012-05-29 15:42 74752 —-a-w- c:\windows\SysWow64\iesetup.dll
2012-05-29 15:42 . 2012-05-29 15:42 697344 —-a-w- c:\windows\system32\msfeeds.dll
2012-05-29 15:42 . 2012-05-29 15:42 65024 —-a-w- c:\windows\system32\pngfilt.dll
2012-05-29 15:42 . 2012-05-29 15:42 63488 —-a-w- c:\windows\SysWow64\tdc.ocx
2012-05-29 15:42 . 2012-05-29 15:42 603648 —-a-w- c:\windows\system32\vbscript.dll
2012-05-29 15:42 . 2012-05-29 15:42 55296 —-a-w- c:\windows\system32\msfeedsbs.dll
2012-05-29 15:42 . 2012-05-29 15:42 534528 —-a-w- c:\windows\system32\ieapfltr.dll
2012-05-29 15:42 . 2012-05-29 15:42 49664 —-a-w- c:\windows\system32\imgutil.dll
2012-05-29 15:42 . 2012-05-29 15:42 48640 —-a-w- c:\windows\SysWow64\mshtmler.dll
2012-05-29 15:42 . 2012-05-29 15:42 48640 —-a-w- c:\windows\system32\mshtmler.dll
2012-05-29 15:42 . 2012-05-29 15:42 452608 —-a-w- c:\windows\system32\dxtmsft.dll
2012-05-29 15:42 . 2012-05-29 15:42 448512 —-a-w- c:\windows\system32\html.iec
2012-05-29 15:42 . 2012-05-29 15:42 420864 —-a-w- c:\windows\SysWow64\vbscript.dll
2012-05-29 15:42 . 2012-05-29 15:42 403248 —-a-w- c:\windows\system32\iedkcs32.dll
2012-05-29 15:42 . 2012-05-29 15:42 39936 —-a-w- c:\windows\system32\iernonce.dll
2012-05-29 15:42 . 2012-05-29 15:42 3695416 —-a-w- c:\windows\system32\ieapfltr.dat
2012-05-29 15:42 . 2012-05-29 15:42 367104 —-a-w- c:\windows\SysWow64\html.iec
2012-05-29 15:42 . 2012-05-29 15:42 35840 —-a-w- c:\windows\SysWow64\imgutil.dll
2012-05-29 15:42 . 2012-05-29 15:42 30720 —-a-w- c:\windows\system32\licmgr10.dll
2012-05-29 15:42 . 2012-05-29 15:42 282112 —-a-w- c:\windows\system32\dxtrans.dll
2012-05-29 15:42 . 2012-05-29 15:42 267776 —-a-w- c:\windows\system32\ieaksie.dll
2012-05-29 15:42 . 2012-05-29 15:42 249344 —-a-w- c:\windows\system32\webcheck.dll
2012-05-29 15:42 . 2012-05-29 15:42 23552 —-a-w- c:\windows\SysWow64\licmgr10.dll
2012-05-29 15:42 . 2012-05-29 15:42 222208 —-a-w- c:\windows\system32\msls31.dll
2012-05-29 15:42 . 2012-05-29 15:42 197120 —-a-w- c:\windows\system32\msrating.dll
2012-05-29 15:42 . 2012-05-29 15:42 165888 —-a-w- c:\windows\system32\iexpress.exe
2012-05-29 15:42 . 2012-05-29 15:42 163840 —-a-w- c:\windows\system32\ieakui.dll
2012-05-29 15:42 . 2012-05-29 15:42 161792 —-a-w- c:\windows\SysWow64\msls31.dll
2012-05-29 15:42 . 2012-05-29 15:42 160256 —-a-w- c:\windows\system32\wextract.exe
2012-05-29 15:42 . 2012-05-29 15:42 160256 —-a-w- c:\windows\system32\ieakeng.dll
2012-05-29 15:42 . 2012-05-29 15:42 152064 —-a-w- c:\windows\SysWow64\wextract.exe
2012-05-29 15:42 . 2012-05-29 15:42 150528 —-a-w- c:\windows\SysWow64\iexpress.exe
2012-05-29 15:42 . 2012-05-29 15:42 149504 —-a-w- c:\windows\system32\occache.dll
2012-05-29 15:42 . 2012-05-29 15:42 145920 —-a-w- c:\windows\system32\iepeers.dll
2012-05-29 15:42 . 2012-05-29 15:42 135168 —-a-w- c:\windows\system32\IEAdvpack.dll
2012-05-29 15:42 . 2012-05-29 15:42 12288 —-a-w- c:\windows\system32\mshta.exe
2012-05-29 15:42 . 2012-05-29 15:42 11776 —-a-w- c:\windows\SysWow64\mshta.exe
2012-05-29 15:42 . 2012-05-29 15:42 114176 —-a-w- c:\windows\system32\admparse.dll
2012-05-29 15:42 . 2012-05-29 15:42 111616 —-a-w- c:\windows\system32\iesysprep.dll
2012-05-29 15:42 . 2012-05-29 15:42 110592 —-a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-05-29 15:42 . 2012-05-29 15:42 10752 —-a-w- c:\windows\system32\msfeedssync.exe
2012-05-29 15:42 . 2012-05-29 15:42 103936 —-a-w- c:\windows\system32\inseng.dll
2012-05-29 15:42 . 2012-05-29 15:42 101888 —-a-w- c:\windows\SysWow64\admparse.dll
2012-05-14 23:41 . 2012-05-29 15:46 8955792 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5CFA0E2C-4580-4487-84A4-149DE77C7025}\mpengine.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
“Skype”=“c:\program files (x86)\Skype\Phone\Skype.exe”
“DAEMON Tools Lite”=“c:\program files (x86)\DAEMON Tools Lite\DTLite.exe”
“Clownfish”=“c:\program files (x86)\Clownfish\Clownfish.exe”
“LightScribe Control Panel”=“c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe”
.
“DivXUpdate”=“c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe”
“APSDaemon”=“c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
“QuickTime Task”=“c:\program files (x86)\QuickTime\QTTask.exe”
“SunJavaUpdateSched”=“c:\program files (x86)\Common Files\Java\Java Update\jusched.exe”
“NBAgent”=“c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe”
.
“ConsentPromptBehaviorAdmin”= 0 (0x0)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableLUA”= 0 (0x0)
“EnableUIADesktopToggle”= 0 (0x0)
“PromptOnSecureDesktop”= 0 (0x0)
“EnableLinkedConnections”= 1 (0x1)
.
“aux”=wdmaud.drv
.
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
@=“Service”
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
R2 hshld;Hotspot Shield Service;c:\program files (x86)\Hotspot Shield\bin\openvpnas.exe
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys
R3 NisSrv;Microsoft Netwerkinspectie;c:\program files\Microsoft Security Client\NisSrv.exe
R3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys
S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
S2 HssWd;Hotspot Shield Monitoring Service;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys
.
.
— Andere Services/Drivers In Geheugen —
.
*NewlyCreated* - WS2IFSL
.
2011-06-20 13:05 451872 —-a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Inhoud van de ‘Gedeelde Taken’ map
.
2012-08-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
.
2012-08-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3146665021-2853366727-1195439118-1000Core.job
- c:\users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
.
2012-08-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3146665021-2853366727-1195439118-1000UA.job
- c:\users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
.
.
——— X64 Entries ———–
.
.
“IgfxTray”=“c:\windows\system32\igfxtray.exe”
“HotKeysCmds”=“c:\windows\system32\hkcmd.exe”
“Persistence”=“c:\windows\system32\igfxpers.exe”
“MSC”=“c:\program files\Microsoft Security Client\msseces.exe”
“IntelliPoint”=“c:\program files\Microsoft IntelliPoint\ipoint.exe”
.
“LoadAppInit_DLLs”=0x0
.
——- Bijkomende Scan ——-
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 213.46.228.196 62.179.104.196
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\shell32.dll
.
- - - - ORPHANS VERWIJDERD - - - -
.
BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
.
.
.
——————— VERGRENDELDE REGISTER SLEUTELS ———————
.
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=“@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_270_ActiveX.exe,-101”
.
“Enabled”=dword:00000001
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_270_ActiveX.exe”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx”
“ThreadingModel”=“Apartment”
.
@=“0”
.
@=“ShockwaveFlash.ShockwaveFlash.11”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“ShockwaveFlash.ShockwaveFlash”
.
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx”
“ThreadingModel”=“Apartment”
.
@=“FlashFactory.FlashFactory.1”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_270.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“FlashFactory.FlashFactory”
.
@Denied: (A 2) (Everyone)
@=“IFlashBroker4”
.
@=“{00020424-0000-0000-C000-000000000046}”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
@Denied: (Full) (Everyone)
.
———————— Andere Aktieve Processen ————————
.
c:\program files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
c:\windows\SysWOW64\DllHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
.
**************************************************************************
.
Voltooingstijd: 2012-08-07 21:15:17 - machine werd herstart
ComboFix-quarantined-files.txt 2012-08-07 19:15
.
Pre-Run: 782.037.544.960 bytes beschikbaar
Post-Run: 781.569.077.248 bytes beschikbaar
.
- - End Of File - - 4F5864165C91303297A66AB98710FB11
fazantje

07-08-2012 21:27

Hoi Petra,
Logjes zien er zo te zien goed uit;)
Download OTC exe hier, om combo weer helemaal te verwijderen.
Plaats het bestand op je bureaublad.
Zorg dat er een internetverbinding is.
Klik vervolgens met je rechtermuisknop op OTCleanIt.exe en kies voor Run as Administrator (Nederlands: Uitvoeren als Administrator) om het programma te starten.
Lukt dat niet , dan dubbelklikken op het icoon.
Klik nu op de knop "CleanUp!"
Als je firewall, of een ander beveiligingsprogramma, een waarschuwing geeft dat OTC.exe internettoegang wil, mag je dit toestaan, het programma heeft die connectie nodig.
OTC zal als laatste vragen of je de computer herstarten wilt, dit mag je toestaan, hiermee verwijdert het zichzelf ook.
Nu gaan we nog even schoonmaken;
Voer punt 5 en 6 uit van ons schoonmaakplan.
Laat even weten hoe het is gegaan.
Succes,
Huib;)

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

Trage verbinding

petr@

fazantje

petr@

fazantje

petr@

Argus

petr@

fazantje

petr@

fazantje