Mededeling

Collapse
No announcement yet.

Warning: possible spyware or adware infection! Click here to scan your computer for spyware and adw

Collapse
X
Collapse
  •  
  • Page of 1
  • Filter
  • Tijd
  • Show
Clear All
new posts
Vorige template Volgende
  • #1

    Warning: possible spyware or adware infection! Click here to scan your computer for spyware and adw

    Volgens mij na het installaren van een video codec, heb ik diverse problemen.

    momenteel heb ik nog veel last van deze melding:
    - een gele balk wordt getoond in IE met de melding "Warning: possible spyware or adware infection! Click here to scan your computer for spyware and adware..."
    de link brengt je bij http://protect.trustedantivirus.com/...............MTY4Nzc=/2/5993/ed=1/ex=1/h=10/zheltaya_hernya/

    Na vele mogelijke oplossingen op deze site van andere discusies, kom ik er maar niet vanaf. Graag jullie hulp!!


    Ook had ik last van onderstaande meldingen, maar na het installeren van Ad-Aware en Spybot - Search & Destroy en Spy Sweeper zijn ze tot nu toe nog niet teruggekomen:
    - IE start zichzelf op
    - Spy Sweeper blokkeer en ip-adres 77.91.228.180
    - popup met melding "SecurePCCleaner may find dangerous traces that need to be cleaned".
    - IE start http://securepccleaner.com/privacy/index.php?...............045a420d46164a52096a5302073d56 ..........
    - IE start http://yourprivacyguard.com/privacy/index.php?...............040a110f41464002583d5056023a585c6c5b54675d54470b155a0c4b0a00090f56450254400 c42136a54020558550603030 ..........
    - IE start http://advancedcleaner.com/.cleaner/?...............p=1037&ida=swram_gdcexx51&led=5993&afr=pp_657900303


    Hier mijn HijackThis results:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:40, on 2008-01-03
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINNT\System32\smss.exe
    C:\WINNT\system32\winlogon.exe
    C:\WINNT\system32\services.exe
    C:\WINNT\system32\lsass.exe
    C:\WINNT\system32\svchost.exe
    C:\WINNT\System32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\WINNT\system32\spoolsv.exe
    C:\WINNT\CatPC\CatSYS\CatSystemSvc.exe
    C:\Program Files\Siemens\CAT Bulletin Board\CBBS.exe
    C:\Program Files\Trusted Applications\CorinaCert\Corina_service.exe
    C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    C:\WINNT\SYSTEM32\DWRCS.EXE
    C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\OfficeScan\ntrtscan.exe
    C:\WINNT\System32\PAStiSvc.exe
    C:\WINNT\system32\svchost.exe
    C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
    C:\Program Files\OfficeScan\OfcPfwSvc.exe
    C:\WINNT\TEMP\SJ8C41.EXE
    C:\WINNT\Explorer.EXE
    C:\WINNT\system32\hkcmd.exe
    C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe
    C:\WINNT\RTHDCPL.EXE
    C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\WINNT\AGRSMMSG.exe
    C:\Program Files\ltmoh\Ltmoh.exe
    C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
    C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
    C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
    C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
    C:\WINNT\MS\SMS\CORE\BIN\LAUNCH32.EXE
    C:\WINNT\system32\wlanSTA.EXE
    D:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\Siemens\CAT Bulletin Board\CBB.exe
    C:\Program Files\OfficeScan\pccntmon.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Siemens\Card API\bin\siecacst.exe
    C:\WINNT\MS\SMS\CLICOMP\SWDist32\bin\smsmon32.exe
    C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
    D:\BT-tools\Internal\CATBTp.exe
    C:\WINNT\system32\ctfmon.exe
    C:\WINNT\system32\proquota.exe
    C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
    C:\Program Files\IXOS\IXOS-eCONtext\bin\IXODMACT.exe
    C:\Program Files\IXOS\IXOS-eCONtext\bin\IXDLSchd.exe
    C:\Program Files\IXOS\IXOS-eCONtext\bin\IXDLMon.exe
    C:\WINNT\SYSTEM32\DWRCST.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    D:\Wincmd\WINCMD32.EXE
    C:\WINNT\MS\SMS\clicomp\apa\Bin\smsapm32.exe
    C:\Program Files\Windows NT\Accessories\wordpad.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://intranet.siemens.nl
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://webconf.siemens.nl/proxy.pac
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
    O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
    O2 - BHO: BDEX System - {EED340D3-CBD6-44FF-9864-78775393FA91} - C:\WINNT\dxpvqlmpdn.dll
    O2 - BHO: LLIEHlprObj Class - {F757FBBF-10E5-4DDA-BBEA-2357E54BEA2B} - C:\Program Files\Open Text\Livelink Explorer\LLBHO3.dll
    O3 - Toolbar: (no name) - {B72A2C9D-0442-486D-B455-FEDB808887D8} - (no file)
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\system32\hkcmd.exe
    O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe"
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [SynTPLpr] "C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
    O4 - HKLM\..\Run: [SynTPEnh] "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [LtMoh] "C:\Program Files\ltmoh\Ltmoh.exe"
    O4 - HKLM\..\Run: [LoadFUJ02E3] "C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe"
    O4 - HKLM\..\Run: [IndicatorUtility] "c:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe"
    O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] "C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe"
    O4 - HKLM\..\Run: [LoadBtnHnd] "C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [CfgDownload] "C:\Program Files\IXOS\IXOS-eCONtext\bin\CfgDownload.exe"
    O4 - HKLM\..\Run: [Java Profiles Fix] "C:\Program Files\Java\Profile Fix\Java_Profile.exe"
    O4 - HKLM\..\Run: [JavaProfileFix3] "C:\Program Files\Java\Profile Fix\JAVA_Fix 3.exe"
    O4 - HKLM\..\Run: [SMS Application Launcher] C:\WINNT\MS\SMS\CORE\BIN\LAUNCH32.EXE
    O4 - HKLM\..\Run: [Synchronization Manager] "C:\WINNT\system32\mobsync.exe" /logon
    O4 - HKLM\..\Run: [wlanSTA.EXE] "wlanSTA.EXE" START
    O4 - HKLM\..\Run: [Ulead AutoDetector] "d:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe"
    O4 - HKLM\..\Run: [PinnacleDriverCheck] "C:\WINNT\system32\PSDrvCheck.exe" -CheckReg
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\OfficeScan\pccntmon.exe" -HideWindow
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
    O4 - HKLM\..\Run: [SIECACST] "C:\Program Files\Siemens\Card API\bin\siecacst.exe"
    O4 - HKLM\..\Run: [MSConfig] "C:\WINNT\PCHealth\HelpCtr\Binaries\MSConfig.exe" /auto
    O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe" /startintray
    O4 - HKCU\..\Run: [CatUserRun] exec32 /wh /c chgreg5 /c
    O4 - HKCU\..\Run: [RssReader] "C:\Program Files\RssReader\RssReader.exe"
    O4 - HKCU\..\Run: [CATBT] d:\BT-tools\Internal\CATBTp.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINNT\system32\ctfmon.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-21-1078081533-682003330-725345543-1007\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'SMSCliSvcAcct&')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'Default user')
    O4 - S-1-5-21-1078081533-682003330-725345543-1007 Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'SMSCliSvcAcct&')
    O4 - S-1-5-21-1078081533-682003330-725345543-1007 User Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'SMSCliSvcAcct&')
    O4 - .DEFAULT User Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'Default user')
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O4 - Global Startup: VPN Client.lnk = ?
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_08\bin\npjpi142_08.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_08\bin\npjpi142_08.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: Flash - {43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA} - C:\Program Files\UnH Solutions\Flash Saving Plugin\FlashSButton.dll (HKCU)
    O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
    O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
    O14 - IERESET.INF: START_PAGE_URL=https://intranet.siemens.nl
    O15 - Trusted Zone: *.*.bb
    O15 - Trusted Zone: *.*.db-direct
    O15 - Trusted Zone: *.*.deelnemer
    O15 - Trusted Zone: *.*.intouch
    O15 - Trusted Zone: *.*.secure
    O15 - Trusted Zone: *.*.server
    O15 - Trusted Zone: *.*.v22
    O15 - Trusted Zone: *.*.web-express
    O15 - Trusted Zone: *.*.zakelijkbetalingsverkeer
    O15 - Trusted Zone: *.139.10.222.247
    O15 - Trusted Zone: *.139.10.222.248
    O15 - Trusted Zone: *.139.10.223.247
    O15 - Trusted Zone: *.139.10.223.248
    O15 - Trusted Zone: *.165.226.251.170
    O15 - Trusted Zone: *.193.173.52.105
    O15 - Trusted Zone: *.193.173.52.106
    O15 - Trusted Zone: *.193.173.52.107
    O15 - Trusted Zone: *.193.173.52.108
    O15 - Trusted Zone: *.195.27.237.150
    O15 - Trusted Zone: *.217.77.130.186
    O15 - Trusted Zone: *.64.69.165.71
    O15 - Trusted Zone: *.66.119.45.27
    O15 - Trusted Zone: *.80.127.89.201
    O15 - Trusted Zone: *.activeworlds.com
    O15 - Trusted Zone: *.ah.nl
    O15 - Trusted Zone: *.amplifon.it
    O15 - Trusted Zone: *.artsystems.nl
    O15 - Trusted Zone: *.azlan.nl
    O15 - Trusted Zone: *.benqmobile.com
    O15 - Trusted Zone: *.borgprojecten.nl
    O15 - Trusted Zone: http://*.service.bsh-trainerweb.com
    O15 - Trusted Zone: *.bsh-trainerweb.com
    O15 - Trusted Zone: *.cisco.com
    O15 - Trusted Zone: *.confarchives.com
    O15 - Trusted Zone: *.conferencelobby.com
    O15 - Trusted Zone: *.conferencing.com
    O15 - Trusted Zone: *.content01.na.iconf.net
    O15 - Trusted Zone: *.db-direct.db.com
    O15 - Trusted Zone: *.db.com
    O15 - Trusted Zone: *.dnb.nl
    O15 - Trusted Zone: *.eservice.siemens.nl
    O15 - Trusted Zone: *.fm-web.siemensvdo.com
    O15 - Trusted Zone: *.ftp.picis.com
    O15 - Trusted Zone: *.fujitsu-siemens.com
    O15 - Trusted Zone: *.genesys.com
    O15 - Trusted Zone: *.gfkms.com
    O15 - Trusted Zone: *.h40106.www4.hp.com
    O15 - Trusted Zone: *.https://bb.dnb.nl
    O15 - Trusted Zone: *.iconf.net
    O15 - Trusted Zone: *.info.enertel.nl
    O15 - Trusted Zone: *.informatique.nl
    O15 - Trusted Zone: *.ingbank.nl
    O15 - Trusted Zone: *.interpay.nl
    O15 - Trusted Zone: *.intranet.hsbos.nl
    O15 - Trusted Zone: *.ipics.siemens.com
    O15 - Trusted Zone: *.klic.com
    O15 - Trusted Zone: *.klic.geodan.nl
    O15 - Trusted Zone: *.klm.com
    O15 - Trusted Zone: *.klm.nl
    O15 - Trusted Zone: *.kpn.org
    O15 - Trusted Zone: *.kvk.nl
    O15 - Trusted Zone: *.makro.nl
    O15 - Trusted Zone: *.marconi.com
    O15 - Trusted Zone: *.maxtrad.com
    O15 - Trusted Zone: *.mp-reporting.icm.siemens.com
    O15 - Trusted Zone: *.mrtedtalentlink.com
    O15 - Trusted Zone: *.nbg-industrial.nl
    O15 - Trusted Zone: *.nl001.siemens.net
    O15 - Trusted Zone: *.onlinefactuurtelfort.nl
    O15 - Trusted Zone: *.oracle.com
    O15 - Trusted Zone: *.p3.postbank.nl
    O15 - Trusted Zone: *.photoprinit.de
    O15 - Trusted Zone: *.placeware.com
    O15 - Trusted Zone: *.postbank.nl
    O15 - Trusted Zone: *.postplaza.nl
    O15 - Trusted Zone: *.projectteam.at
    O15 - Trusted Zone: *.pwnportal.nl
    O15 - Trusted Zone: *.recruitmentplatform.com
    O15 - Trusted Zone: *.retournet.nl
    O15 - Trusted Zone: *.rh-bridge.com
    O15 - Trusted Zone: *.rubio.nl
    O15 - Trusted Zone: *.sap-ag.de
    O15 - Trusted Zone: *.sap.com
    O15 - Trusted Zone: *.servicewatch.nl
    O15 - Trusted Zone: *.sidn.nl
    O15 - Trusted Zone: *.sieflex.nl
    O15 - Trusted Zone: *.sieflex.unitedmarketplace.nl
    O15 - Trusted Zone: *.siemens-hausgeraete.de
    O15 - Trusted Zone: *.siemens.be
    O15 - Trusted Zone: *.siemens.com
    O15 - Trusted Zone: *.siemens.de
    O15 - Trusted Zone: *.siemens.nl
    O15 - Trusted Zone: *.solsol.nl
    O15 - Trusted Zone: *.speedera.net
    O15 - Trusted Zone: *.startyourengines.nl
    O15 - Trusted Zone: *.tdexpert.i-control.nl
    O15 - Trusted Zone: *.tdexpert.nl
    O15 - Trusted Zone: *.techdata.be
    O15 - Trusted Zone: *.techdata.com
    O15 - Trusted Zone: *.techdata.nl
    O15 - Trusted Zone: *.technischeunie.com
    O15 - Trusted Zone: *.telewerken.hr.nl
    O15 - Trusted Zone: *.tqm.fsc-pc.de
    O15 - Trusted Zone: *.trial.peersphere.net
    O15 - Trusted Zone: *.v22.mrtedtalentlink.com
    O15 - Trusted Zone: *.veiligheidlangshetspoor.com
    O15 - Trusted Zone: *.webconf.siemens.nl
    O15 - Trusted Zone: *.webtrends.com
    O15 - Trusted Zone: *.workplace.siemens.net
    O15 - Trusted Zone: *.worldtaxservice.com
    O15 - Trusted Zone: *.xtl.nl
    O15 - Trusted Zone: *.sap-ag.de (HKLM)
    O15 - Trusted Zone: *.sap.com (HKLM)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = nl001.siemens.net
    O17 - HKLM\Software\..\Telephony: DomainName = nl001.siemens.net
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = nl001.siemens.net
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = nl001.siemens.net
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
    O17 - HKLM\System\CS3\Services\Tcpip\Parameters: Domain = nl001.siemens.net
    O17 - HKLM\System\CS3\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
    O21 - SSODL: bklgvsf - {F1E937F2-4848-444F-A841-AE8BB3A90093} - (no file)
    O21 - SSODL: ampkfst - {15E6AB3D-4BBE-4BD7-9C0E-75AE82ACF940} - C:\WINNT\ampkfst.dll
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: CatSystem (CatSystemSvc) - Siemens AG - C:\WINNT\CatPC\CatSYS\CatSystemSvc.exe
    O23 - Service: CAT Bulletin Board (CBBS) - Unknown owner - C:\Program Files\Siemens\CAT Bulletin Board\CBBS.exe
    O23 - Service: CorinaCertService - Siemens Business Services GmbH & Co OHG SBS SI SWE3 - C:\Program Files\Trusted Applications\CorinaCert\Corina_service.exe
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    O23 - Service: DameWare Mini Remote Control (DWMRCS) - DameWare Development LLC - C:\WINNT\SYSTEM32\DWRCS.EXE
    O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
    O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\OfficeScan\ntrtscan.exe
    O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Program Files\OfficeScan\OfcPfwSvc.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINNT\system32\HPZipm12.exe
    O23 - Service: STI Simulator - Unknown owner - C:\WINNT\System32\PAStiSvc.exe
    O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

    --
    End of file - 15199 bytes
    Labels: Geen
    • Citaat
  • #2
    Download: RVAXO.exe
    • Sla het bestand op je bureaublad op, dubbelklik het en kies voor "Unzip" om het uit te pakken.
    • Open nu de map RVAXO op je bureaublad en dubbeklik RVAXO.cmd
      Er zal een cmd-schermpje openen, daarin zullen snel enkele regels over niet gevonden bestanden voorbijkomen, dit is normaal.
    • Mogelijk start er ook een uninstaller van een rogue scanner op, sluit deze niet af maar volg eventuele aanwijzingen en laat deze gewoon zijn werk doen.
    • Daarna zal je PC herstarten, na de herstart opent het cmd-venster van RVAXO opnieuw.
      Laat deze lopen en wacht tot er een logfile opent: C:\RVAXO-results.log
    • Herstart je computer niet vanzelf, of start de tool niet na de reboot, doe dit dan handmatig.
    • Post de inhoud van de logfile in je volgende bericht tesamen met een nieuw logje van HijackThis.
    • Citaat

    Comment

    • #3
      RVAXO-results.log

      ----------------RVAXO.exe first run-------------

      Files found:

      C:\WINNT\ampkfst.dll
      C:\WINNT\dxpvqlmpdn.dll
      C:\WINNT\dat.txt
      C:\WINNT\rs.txt
      C:\WINNT\foxflpd.exe
      C:\WINNT\search_res.txt

      Uninstallers Rogue scanners:


      Folders Found:

      C:\Program Files\MediaSupplyCodec

      Hosts-file was reset, If you use a custom hosts file please replace it...

      --------------RVAXO.exe last run---------------

      Files found:

      Folders Found:

      --------------RVAXO.exe finished----------------



      En hier de hijackthis.log

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 21:22, on 2008-01-03
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
      Boot mode: Normal

      Running processes:
      C:\WINNT\System32\smss.exe
      C:\WINNT\system32\winlogon.exe
      C:\WINNT\system32\services.exe
      C:\WINNT\system32\lsass.exe
      C:\WINNT\system32\svchost.exe
      C:\WINNT\System32\svchost.exe
      C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      C:\WINNT\system32\spoolsv.exe
      C:\WINNT\CatPC\CatSYS\CatSystemSvc.exe
      C:\Program Files\Siemens\CAT Bulletin Board\CBBS.exe
      C:\Program Files\Trusted Applications\CorinaCert\Corina_service.exe
      C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
      C:\WINNT\SYSTEM32\DWRCS.EXE
      C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
      C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
      C:\Program Files\OfficeScan\ntrtscan.exe
      C:\WINNT\System32\PAStiSvc.exe
      C:\WINNT\system32\svchost.exe
      C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
      C:\Program Files\OfficeScan\OfcPfwSvc.exe
      C:\WINNT\TEMP\TLBF8F.EXE
      C:\WINNT\MS\SMS\clicomp\apa\Bin\smsapm32.exe
      C:\WINNT\system32\wuauclt.exe
      C:\WINNT\Explorer.EXE
      C:\Program Files\Siemens\CAT Bulletin Board\CBB.exe
      C:\WINNT\system32\proquota.exe
      C:\WINNT\system32\notepad.exe
      C:\WINNT\SYSTEM32\DWRCST.exe
      C:\WINNT\system32\hkcmd.exe
      C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe
      C:\WINNT\RTHDCPL.EXE
      C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
      C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      C:\WINNT\AGRSMMSG.exe
      C:\Program Files\ltmoh\Ltmoh.exe
      C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
      C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
      C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
      C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
      C:\WINNT\MS\SMS\CORE\BIN\LAUNCH32.EXE
      C:\WINNT\system32\wlanSTA.EXE
      D:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
      C:\Program Files\QuickTime\qttask.exe
      C:\Program Files\OfficeScan\pccntmon.exe
      C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      C:\Program Files\Siemens\Card API\bin\siecacst.exe
      C:\WINNT\MS\SMS\CLICOMP\SWDist32\bin\smsmon32.exe
      C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
      C:\Program Files\RssReader\RssReader.exe
      D:\BT-tools\Internal\CATBTp.exe
      C:\WINNT\system32\ctfmon.exe
      C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
      C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
      C:\Program Files\Internet Explorer\IEXPLORE.EXE
      C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://intranet.siemens.nl
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://webconf.siemens.nl/proxy.pac
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
      O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
      O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
      O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
      O2 - BHO: LLIEHlprObj Class - {F757FBBF-10E5-4DDA-BBEA-2357E54BEA2B} - C:\Program Files\Open Text\Livelink Explorer\LLBHO3.dll
      O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\system32\hkcmd.exe
      O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe"
      O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
      O4 - HKLM\..\Run: [SynTPLpr] "C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
      O4 - HKLM\..\Run: [SynTPEnh] "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
      O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
      O4 - HKLM\..\Run: [LtMoh] "C:\Program Files\ltmoh\Ltmoh.exe"
      O4 - HKLM\..\Run: [LoadFUJ02E3] "C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe"
      O4 - HKLM\..\Run: [IndicatorUtility] "c:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe"
      O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] "C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe"
      O4 - HKLM\..\Run: [LoadBtnHnd] "C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe"
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [CfgDownload] "C:\Program Files\IXOS\IXOS-eCONtext\bin\CfgDownload.exe"
      O4 - HKLM\..\Run: [Java Profiles Fix] "C:\Program Files\Java\Profile Fix\Java_Profile.exe"
      O4 - HKLM\..\Run: [JavaProfileFix3] "C:\Program Files\Java\Profile Fix\JAVA_Fix 3.exe"
      O4 - HKLM\..\Run: [SMS Application Launcher] C:\WINNT\MS\SMS\CORE\BIN\LAUNCH32.EXE
      O4 - HKLM\..\Run: [Synchronization Manager] "C:\WINNT\system32\mobsync.exe" /logon
      O4 - HKLM\..\Run: [wlanSTA.EXE] "wlanSTA.EXE" START
      O4 - HKLM\..\Run: [Ulead AutoDetector] "d:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe"
      O4 - HKLM\..\Run: [PinnacleDriverCheck] "C:\WINNT\system32\PSDrvCheck.exe" -CheckReg
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\OfficeScan\pccntmon.exe" -HideWindow
      O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
      O4 - HKLM\..\Run: [SIECACST] "C:\Program Files\Siemens\Card API\bin\siecacst.exe"
      O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
      O4 - HKCU\..\Run: [CatUserRun] exec32 /wh /c chgreg5 /c
      O4 - HKCU\..\Run: [RssReader] "C:\Program Files\RssReader\RssReader.exe"
      O4 - HKCU\..\Run: [CATBT] d:\BT-tools\Internal\CATBTp.exe
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINNT\system32\ctfmon.exe
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'LOCAL SERVICE')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'NETWORK SERVICE')
      O4 - HKUS\S-1-5-21-1078081533-682003330-725345543-1007\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'SMSCliSvcAcct&')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'Default user')
      O4 - S-1-5-21-1078081533-682003330-725345543-1007 Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'SMSCliSvcAcct&')
      O4 - S-1-5-21-1078081533-682003330-725345543-1007 User Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'SMSCliSvcAcct&')
      O4 - .DEFAULT User Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'Default user')
      O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
      O4 - Global Startup: VPN Client.lnk = ?
      O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
      O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_08\bin\npjpi142_08.dll
      O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_08\bin\npjpi142_08.dll
      O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
      O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra button: Flash - {43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA} - C:\Program Files\UnH Solutions\Flash Saving Plugin\FlashSButton.dll (HKCU)
      O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
      O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
      O14 - IERESET.INF: START_PAGE_URL=https://intranet.siemens.nl
      O15 - Trusted Zone: *.*.bb
      O15 - Trusted Zone: *.*.db-direct
      O15 - Trusted Zone: *.*.deelnemer
      O15 - Trusted Zone: *.*.intouch
      O15 - Trusted Zone: *.*.secure
      O15 - Trusted Zone: *.*.server
      O15 - Trusted Zone: *.*.v22
      O15 - Trusted Zone: *.*.web-express
      O15 - Trusted Zone: *.*.zakelijkbetalingsverkeer
      O15 - Trusted Zone: *.139.10.222.247
      O15 - Trusted Zone: *.139.10.222.248
      O15 - Trusted Zone: *.139.10.223.247
      O15 - Trusted Zone: *.139.10.223.248
      O15 - Trusted Zone: *.165.226.251.170
      O15 - Trusted Zone: *.193.173.52.105
      O15 - Trusted Zone: *.193.173.52.106
      O15 - Trusted Zone: *.193.173.52.107
      O15 - Trusted Zone: *.193.173.52.108
      O15 - Trusted Zone: *.195.27.237.150
      O15 - Trusted Zone: *.217.77.130.186
      O15 - Trusted Zone: *.64.69.165.71
      O15 - Trusted Zone: *.66.119.45.27
      O15 - Trusted Zone: *.80.127.89.201
      O15 - Trusted Zone: *.activeworlds.com
      O15 - Trusted Zone: *.ah.nl
      O15 - Trusted Zone: *.amplifon.it
      O15 - Trusted Zone: *.artsystems.nl
      O15 - Trusted Zone: *.azlan.nl
      O15 - Trusted Zone: *.benqmobile.com
      O15 - Trusted Zone: *.borgprojecten.nl
      O15 - Trusted Zone: http://*.service.bsh-trainerweb.com
      O15 - Trusted Zone: *.bsh-trainerweb.com
      O15 - Trusted Zone: *.cisco.com
      O15 - Trusted Zone: *.confarchives.com
      O15 - Trusted Zone: *.conferencelobby.com
      O15 - Trusted Zone: *.conferencing.com
      O15 - Trusted Zone: *.content01.na.iconf.net
      O15 - Trusted Zone: *.db-direct.db.com
      O15 - Trusted Zone: *.db.com
      O15 - Trusted Zone: *.dnb.nl
      O15 - Trusted Zone: *.eservice.siemens.nl
      O15 - Trusted Zone: *.fm-web.siemensvdo.com
      O15 - Trusted Zone: *.ftp.picis.com
      O15 - Trusted Zone: *.fujitsu-siemens.com
      O15 - Trusted Zone: *.genesys.com
      O15 - Trusted Zone: *.gfkms.com
      O15 - Trusted Zone: *.h40106.www4.hp.com
      O15 - Trusted Zone: *.https://bb.dnb.nl
      O15 - Trusted Zone: *.iconf.net
      O15 - Trusted Zone: *.info.enertel.nl
      O15 - Trusted Zone: *.informatique.nl
      O15 - Trusted Zone: *.ingbank.nl
      O15 - Trusted Zone: *.interpay.nl
      O15 - Trusted Zone: *.intranet.hsbos.nl
      O15 - Trusted Zone: *.ipics.siemens.com
      O15 - Trusted Zone: *.klic.com
      O15 - Trusted Zone: *.klic.geodan.nl
      O15 - Trusted Zone: *.klm.com
      O15 - Trusted Zone: *.klm.nl
      O15 - Trusted Zone: *.kpn.org
      O15 - Trusted Zone: *.kvk.nl
      O15 - Trusted Zone: *.makro.nl
      O15 - Trusted Zone: *.marconi.com
      O15 - Trusted Zone: *.maxtrad.com
      O15 - Trusted Zone: *.mp-reporting.icm.siemens.com
      O15 - Trusted Zone: *.mrtedtalentlink.com
      O15 - Trusted Zone: *.nbg-industrial.nl
      O15 - Trusted Zone: *.nl001.siemens.net
      O15 - Trusted Zone: *.onlinefactuurtelfort.nl
      O15 - Trusted Zone: *.oracle.com
      O15 - Trusted Zone: *.p3.postbank.nl
      O15 - Trusted Zone: *.photoprinit.de
      O15 - Trusted Zone: *.placeware.com
      O15 - Trusted Zone: *.postbank.nl
      O15 - Trusted Zone: *.postplaza.nl
      O15 - Trusted Zone: *.projectteam.at
      O15 - Trusted Zone: *.pwnportal.nl
      O15 - Trusted Zone: *.recruitmentplatform.com
      O15 - Trusted Zone: *.retournet.nl
      O15 - Trusted Zone: *.rh-bridge.com
      O15 - Trusted Zone: *.rubio.nl
      O15 - Trusted Zone: *.sap-ag.de
      O15 - Trusted Zone: *.sap.com
      O15 - Trusted Zone: *.servicewatch.nl
      O15 - Trusted Zone: *.sidn.nl
      O15 - Trusted Zone: *.sieflex.nl
      O15 - Trusted Zone: *.sieflex.unitedmarketplace.nl
      O15 - Trusted Zone: *.siemens-hausgeraete.de
      O15 - Trusted Zone: *.siemens.be
      O15 - Trusted Zone: *.siemens.com
      O15 - Trusted Zone: *.siemens.de
      O15 - Trusted Zone: *.siemens.nl
      O15 - Trusted Zone: *.solsol.nl
      O15 - Trusted Zone: *.speedera.net
      O15 - Trusted Zone: *.startyourengines.nl
      O15 - Trusted Zone: *.tdexpert.i-control.nl
      O15 - Trusted Zone: *.tdexpert.nl
      O15 - Trusted Zone: *.techdata.be
      O15 - Trusted Zone: *.techdata.com
      O15 - Trusted Zone: *.techdata.nl
      O15 - Trusted Zone: *.technischeunie.com
      O15 - Trusted Zone: *.telewerken.hr.nl
      O15 - Trusted Zone: *.tqm.fsc-pc.de
      O15 - Trusted Zone: *.trial.peersphere.net
      O15 - Trusted Zone: *.v22.mrtedtalentlink.com
      O15 - Trusted Zone: *.veiligheidlangshetspoor.com
      O15 - Trusted Zone: *.webconf.siemens.nl
      O15 - Trusted Zone: *.webtrends.com
      O15 - Trusted Zone: *.workplace.siemens.net
      O15 - Trusted Zone: *.worldtaxservice.com
      O15 - Trusted Zone: *.xtl.nl
      O15 - Trusted Zone: *.sap-ag.de (HKLM)
      O15 - Trusted Zone: *.sap.com (HKLM)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = nl001.siemens.net
      O17 - HKLM\Software\..\Telephony: DomainName = nl001.siemens.net
      O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = nl001.siemens.net
      O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
      O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = nl001.siemens.net
      O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
      O17 - HKLM\System\CS3\Services\Tcpip\Parameters: Domain = nl001.siemens.net
      O17 - HKLM\System\CS3\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
      O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      O23 - Service: CatSystem (CatSystemSvc) - Siemens AG - C:\WINNT\CatPC\CatSYS\CatSystemSvc.exe
      O23 - Service: CAT Bulletin Board (CBBS) - Unknown owner - C:\Program Files\Siemens\CAT Bulletin Board\CBBS.exe
      O23 - Service: CorinaCertService - Siemens Business Services GmbH & Co OHG SBS SI SWE3 - C:\Program Files\Trusted Applications\CorinaCert\Corina_service.exe
      O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
      O23 - Service: DameWare Mini Remote Control (DWMRCS) - DameWare Development LLC - C:\WINNT\SYSTEM32\DWRCS.EXE
      O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
      O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\OfficeScan\ntrtscan.exe
      O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Program Files\OfficeScan\OfcPfwSvc.exe
      O23 - Service: Pml Driver HPZ12 - HP - C:\WINNT\system32\HPZipm12.exe
      O23 - Service: STI Simulator - Unknown owner - C:\WINNT\System32\PAStiSvc.exe
      O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

      --
      End of file - 14707 bytes


      Ik ben benieuwd
      • Citaat

      Comment

      • #4
        Lijkt goed gegaan te zijn

        Open de map RVAXO op je bureaublad en dubbelklik Uninstall.cmd
        Dit zal alles van RVAXO doen verwijderen.

        Start HijackThis nog een keer en plaats alleen een vinkje voor de volgende regels:
        O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
        O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
        Sluit alle open vensters(behalve HijackThis), klik daarna op "Fix checked" en sluit HijackThis af.

        Je Java software is verouderd. oudere versies hebben lekken die malware de kans geeft om zich te installeren op je systeem.
        Doe eerst deze stappen om Java te de-installeren en de nieuwere versie te installeren:
        • Download Java Runtime Environment (JRE) 6.3 en bewaar het naar je Bureaublad.
        • Sluit alle programma's die eventueel open zijn - Zeker je web browser!
        • Ga dan naar Start > Configuratiescherm > Software en verwijder alle oudere versies van Java uit de Softwarelijst.
        • Vink alles aan met Java Runtime Environment (JRE of J2SE) in de naam.
        • Klik dan op Verwijderen of op de Wijzig/Verwijder knop.
        • Herhaal dit tot alle oudere versies verdwenen zijn.
        • Na het verwijderen van alle oudere versies, herstart je pc.
        • Dubbelklik vervolgens op jre-6u3-windows-i586-p.exe op je Bureaublad om de nieuwste versie van Java te installeren.


        Download ATF cleaner (mirror)(gemaakt door Atribune)

        Belangrijk: Sluit al je browservensters(IE en/of Firefox en/of Opera) om de tool goed te kunnen laten werken.

        Dubbelklik op ATF cleaner om het programma te starten.
        Op het tabblad "Main", plaats je een vinkje bij Select All.
        Klik op de knop Empty Selected.

        Het volgende doen als je ook FireFox als browser hebt:
        Klik op tabblad "Firefox", plaats een vinkje bij Select All.
        Wil je de door Firefox opgeslagen wachtwoorden behouden, dan klik je in het venster dat verschijnt op "No".
        (dit haalt het vinkje weer weg bij "Firefox saved passwords")
        Klik op de knop Empty Selected.

        Het volgende doen als je ook Opera als browser hebt:
        Klik op tabblad "Opera", plaats een vinkje bij Select All.
        Wil je de door Opera opgeslagen wachtwoorden behouden, dan klik je in het venster dat verschijnt op "No".
        Klik op de knop Empty Selected.
        Ga naar het tabblad "Main" en klik op de knop Exit om het programma af te sluiten.

        Schakel Systeemherstel uit. Herstart de computer. Schakel Systeemherstel weer in.
        Kijk hier hoe je je systeemherstel moet uitschakelen.
        Hiermee verwijder je eventuele restanten van de infecties uit je systeemherstel.

        Post als laatste nog een nieuw logje van Hijackthis ter controle
        • Citaat

        Comment

        • #5
          Hier de Hijackthis.log ter controle


          Logfile of Trend Micro HijackThis v2.0.2
          Scan saved at 22:24, on 2008-01-03
          Platform: Windows XP SP2 (WinNT 5.01.2600)
          MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
          Boot mode: Normal

          Running processes:
          C:\WINNT\System32\smss.exe
          C:\WINNT\system32\winlogon.exe
          C:\WINNT\system32\services.exe
          C:\WINNT\system32\lsass.exe
          C:\WINNT\system32\svchost.exe
          C:\WINNT\System32\svchost.exe
          C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
          C:\WINNT\system32\spoolsv.exe
          C:\WINNT\CatPC\CatSYS\CatSystemSvc.exe
          C:\Program Files\Siemens\CAT Bulletin Board\CBBS.exe
          C:\Program Files\Trusted Applications\CorinaCert\Corina_service.exe
          C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
          C:\WINNT\SYSTEM32\DWRCS.EXE
          C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
          C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
          C:\Program Files\OfficeScan\ntrtscan.exe
          C:\WINNT\System32\PAStiSvc.exe
          C:\WINNT\system32\svchost.exe
          C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
          C:\Program Files\OfficeScan\OfcPfwSvc.exe
          C:\WINNT\TEMP\OM21.EXE
          C:\WINNT\MS\SMS\clicomp\apa\Bin\smsapm32.exe
          C:\WINNT\system32\wuauclt.exe
          C:\WINNT\Explorer.EXE
          C:\WINNT\system32\hkcmd.exe
          C:\WINNT\SYSTEM32\DWRCST.exe
          C:\Program Files\Siemens\CAT Bulletin Board\CBB.exe
          C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe
          C:\WINNT\RTHDCPL.EXE
          C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
          C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
          C:\WINNT\AGRSMMSG.exe
          C:\Program Files\ltmoh\Ltmoh.exe
          C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
          C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
          C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
          C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
          C:\WINNT\MS\SMS\CORE\BIN\LAUNCH32.EXE
          C:\WINNT\system32\wlanSTA.EXE
          D:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
          C:\WINNT\MS\SMS\CLICOMP\SWDist32\bin\smsmon32.exe
          C:\Program Files\QuickTime\qttask.exe
          C:\Program Files\OfficeScan\pccntmon.exe
          C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
          C:\Program Files\Siemens\Card API\bin\siecacst.exe
          C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
          C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
          C:\Program Files\RssReader\RssReader.exe
          D:\BT-tools\Internal\CATBTp.exe
          C:\WINNT\system32\ctfmon.exe
          C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
          C:\WINNT\system32\proquota.exe
          C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
          C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
          C:\Program Files\Webroot\Spy Sweeper\SSU.EXE

          R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
          R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://intranet.siemens.nl
          R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://webconf.siemens.nl/proxy.pac
          O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
          O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
          O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
          O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
          O2 - BHO: LLIEHlprObj Class - {F757FBBF-10E5-4DDA-BBEA-2357E54BEA2B} - C:\Program Files\Open Text\Livelink Explorer\LLBHO3.dll
          O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
          O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\system32\hkcmd.exe
          O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe"
          O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
          O4 - HKLM\..\Run: [SynTPLpr] "C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
          O4 - HKLM\..\Run: [SynTPEnh] "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
          O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
          O4 - HKLM\..\Run: [LtMoh] "C:\Program Files\ltmoh\Ltmoh.exe"
          O4 - HKLM\..\Run: [LoadFUJ02E3] "C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe"
          O4 - HKLM\..\Run: [IndicatorUtility] "c:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe"
          O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] "C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe"
          O4 - HKLM\..\Run: [LoadBtnHnd] "C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe"
          O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
          O4 - HKLM\..\Run: [CfgDownload] "C:\Program Files\IXOS\IXOS-eCONtext\bin\CfgDownload.exe"
          O4 - HKLM\..\Run: [SMS Application Launcher] C:\WINNT\MS\SMS\CORE\BIN\LAUNCH32.EXE
          O4 - HKLM\..\Run: [Synchronization Manager] "C:\WINNT\system32\mobsync.exe" /logon
          O4 - HKLM\..\Run: [wlanSTA.EXE] "wlanSTA.EXE" START
          O4 - HKLM\..\Run: [Ulead AutoDetector] "d:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe"
          O4 - HKLM\..\Run: [PinnacleDriverCheck] "C:\WINNT\system32\PSDrvCheck.exe" -CheckReg
          O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
          O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\OfficeScan\pccntmon.exe" -HideWindow
          O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
          O4 - HKLM\..\Run: [SIECACST] "C:\Program Files\Siemens\Card API\bin\siecacst.exe"
          O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
          O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
          O4 - HKCU\..\Run: [CatUserRun] exec32 /wh /c chgreg5 /c
          O4 - HKCU\..\Run: [RssReader] "C:\Program Files\RssReader\RssReader.exe"
          O4 - HKCU\..\Run: [CATBT] d:\BT-tools\Internal\CATBTp.exe
          O4 - HKCU\..\Run: [ctfmon.exe] C:\WINNT\system32\ctfmon.exe
          O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'LOCAL SERVICE')
          O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'NETWORK SERVICE')
          O4 - HKUS\S-1-5-21-1078081533-682003330-725345543-1007\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'SMSCliSvcAcct&')
          O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'SYSTEM')
          O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINNT\system32\CTFMON.EXE (User 'Default user')
          O4 - S-1-5-21-1078081533-682003330-725345543-1007 Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'SMSCliSvcAcct&')
          O4 - S-1-5-21-1078081533-682003330-725345543-1007 User Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'SMSCliSvcAcct&')
          O4 - .DEFAULT User Startup: CamTrack.lnk = D:\DigitalPeers\CamTrack\camtrack.exe (User 'Default user')
          O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
          O4 - Global Startup: VPN Client.lnk = ?
          O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
          O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
          O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
          O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
          O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
          O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
          O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
          O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
          O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
          O9 - Extra button: Flash - {43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA} - C:\Program Files\UnH Solutions\Flash Saving Plugin\FlashSButton.dll (HKCU)
          O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
          O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
          O14 - IERESET.INF: START_PAGE_URL=https://intranet.siemens.nl
          O15 - Trusted Zone: *.*.bb
          O15 - Trusted Zone: *.*.db-direct
          O15 - Trusted Zone: *.*.deelnemer
          O15 - Trusted Zone: *.*.intouch
          O15 - Trusted Zone: *.*.secure
          O15 - Trusted Zone: *.*.server
          O15 - Trusted Zone: *.*.v22
          O15 - Trusted Zone: *.*.web-express
          O15 - Trusted Zone: *.*.zakelijkbetalingsverkeer
          O15 - Trusted Zone: *.139.10.222.247
          O15 - Trusted Zone: *.139.10.222.248
          O15 - Trusted Zone: *.139.10.223.247
          O15 - Trusted Zone: *.139.10.223.248
          O15 - Trusted Zone: *.165.226.251.170
          O15 - Trusted Zone: *.193.173.52.105
          O15 - Trusted Zone: *.193.173.52.106
          O15 - Trusted Zone: *.193.173.52.107
          O15 - Trusted Zone: *.193.173.52.108
          O15 - Trusted Zone: *.195.27.237.150
          O15 - Trusted Zone: *.217.77.130.186
          O15 - Trusted Zone: *.64.69.165.71
          O15 - Trusted Zone: *.66.119.45.27
          O15 - Trusted Zone: *.80.127.89.201
          O15 - Trusted Zone: *.activeworlds.com
          O15 - Trusted Zone: *.ah.nl
          O15 - Trusted Zone: *.amplifon.it
          O15 - Trusted Zone: *.artsystems.nl
          O15 - Trusted Zone: *.azlan.nl
          O15 - Trusted Zone: *.benqmobile.com
          O15 - Trusted Zone: *.borgprojecten.nl
          O15 - Trusted Zone: http://*.service.bsh-trainerweb.com
          O15 - Trusted Zone: *.bsh-trainerweb.com
          O15 - Trusted Zone: *.cisco.com
          O15 - Trusted Zone: *.confarchives.com
          O15 - Trusted Zone: *.conferencelobby.com
          O15 - Trusted Zone: *.conferencing.com
          O15 - Trusted Zone: *.content01.na.iconf.net
          O15 - Trusted Zone: *.db-direct.db.com
          O15 - Trusted Zone: *.db.com
          O15 - Trusted Zone: *.dnb.nl
          O15 - Trusted Zone: *.eservice.siemens.nl
          O15 - Trusted Zone: *.fm-web.siemensvdo.com
          O15 - Trusted Zone: *.ftp.picis.com
          O15 - Trusted Zone: *.fujitsu-siemens.com
          O15 - Trusted Zone: *.genesys.com
          O15 - Trusted Zone: *.gfkms.com
          O15 - Trusted Zone: *.h40106.www4.hp.com
          O15 - Trusted Zone: *.https://bb.dnb.nl
          O15 - Trusted Zone: *.iconf.net
          O15 - Trusted Zone: *.info.enertel.nl
          O15 - Trusted Zone: *.informatique.nl
          O15 - Trusted Zone: *.ingbank.nl
          O15 - Trusted Zone: *.interpay.nl
          O15 - Trusted Zone: *.intranet.hsbos.nl
          O15 - Trusted Zone: *.ipics.siemens.com
          O15 - Trusted Zone: *.klic.com
          O15 - Trusted Zone: *.klic.geodan.nl
          O15 - Trusted Zone: *.klm.com
          O15 - Trusted Zone: *.klm.nl
          O15 - Trusted Zone: *.kpn.org
          O15 - Trusted Zone: *.kvk.nl
          O15 - Trusted Zone: *.makro.nl
          O15 - Trusted Zone: *.marconi.com
          O15 - Trusted Zone: *.maxtrad.com
          O15 - Trusted Zone: *.mp-reporting.icm.siemens.com
          O15 - Trusted Zone: *.mrtedtalentlink.com
          O15 - Trusted Zone: *.nbg-industrial.nl
          O15 - Trusted Zone: *.nl001.siemens.net
          O15 - Trusted Zone: *.onlinefactuurtelfort.nl
          O15 - Trusted Zone: *.oracle.com
          O15 - Trusted Zone: *.p3.postbank.nl
          O15 - Trusted Zone: *.photoprinit.de
          O15 - Trusted Zone: *.placeware.com
          O15 - Trusted Zone: *.postbank.nl
          O15 - Trusted Zone: *.postplaza.nl
          O15 - Trusted Zone: *.projectteam.at
          O15 - Trusted Zone: *.pwnportal.nl
          O15 - Trusted Zone: *.recruitmentplatform.com
          O15 - Trusted Zone: *.retournet.nl
          O15 - Trusted Zone: *.rh-bridge.com
          O15 - Trusted Zone: *.rubio.nl
          O15 - Trusted Zone: *.sap-ag.de
          O15 - Trusted Zone: *.sap.com
          O15 - Trusted Zone: *.servicewatch.nl
          O15 - Trusted Zone: *.sidn.nl
          O15 - Trusted Zone: *.sieflex.nl
          O15 - Trusted Zone: *.sieflex.unitedmarketplace.nl
          O15 - Trusted Zone: *.siemens-hausgeraete.de
          O15 - Trusted Zone: *.siemens.be
          O15 - Trusted Zone: *.siemens.com
          O15 - Trusted Zone: *.siemens.de
          O15 - Trusted Zone: *.siemens.nl
          O15 - Trusted Zone: *.solsol.nl
          O15 - Trusted Zone: *.speedera.net
          O15 - Trusted Zone: *.startyourengines.nl
          O15 - Trusted Zone: *.tdexpert.i-control.nl
          O15 - Trusted Zone: *.tdexpert.nl
          O15 - Trusted Zone: *.techdata.be
          O15 - Trusted Zone: *.techdata.com
          O15 - Trusted Zone: *.techdata.nl
          O15 - Trusted Zone: *.technischeunie.com
          O15 - Trusted Zone: *.telewerken.hr.nl
          O15 - Trusted Zone: *.tqm.fsc-pc.de
          O15 - Trusted Zone: *.trial.peersphere.net
          O15 - Trusted Zone: *.v22.mrtedtalentlink.com
          O15 - Trusted Zone: *.veiligheidlangshetspoor.com
          O15 - Trusted Zone: *.webconf.siemens.nl
          O15 - Trusted Zone: *.webtrends.com
          O15 - Trusted Zone: *.workplace.siemens.net
          O15 - Trusted Zone: *.worldtaxservice.com
          O15 - Trusted Zone: *.xtl.nl
          O15 - Trusted Zone: *.sap-ag.de (HKLM)
          O15 - Trusted Zone: *.sap.com (HKLM)
          O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = nl001.siemens.net
          O17 - HKLM\Software\..\Telephony: DomainName = nl001.siemens.net
          O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = nl001.siemens.net
          O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
          O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = nl001.siemens.net
          O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
          O17 - HKLM\System\CS3\Services\Tcpip\Parameters: Domain = nl001.siemens.net
          O17 - HKLM\System\CS3\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
          O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = nl001.siemens.net,siemens.nl
          O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
          O23 - Service: CatSystem (CatSystemSvc) - Siemens AG - C:\WINNT\CatPC\CatSYS\CatSystemSvc.exe
          O23 - Service: CAT Bulletin Board (CBBS) - Unknown owner - C:\Program Files\Siemens\CAT Bulletin Board\CBBS.exe
          O23 - Service: CorinaCertService - Siemens Business Services GmbH & Co OHG SBS SI SWE3 - C:\Program Files\Trusted Applications\CorinaCert\Corina_service.exe
          O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
          O23 - Service: DameWare Mini Remote Control (DWMRCS) - DameWare Development LLC - C:\WINNT\SYSTEM32\DWRCS.EXE
          O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
          O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\OfficeScan\ntrtscan.exe
          O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Program Files\OfficeScan\OfcPfwSvc.exe
          O23 - Service: Pml Driver HPZ12 - HP - C:\WINNT\system32\HPZipm12.exe
          O23 - Service: STI Simulator - Unknown owner - C:\WINNT\System32\PAStiSvc.exe
          O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

          --
          End of file - 14766 bytes


          so far so good
          • Citaat

          Comment

          • #6
            Logje ziet er weer prima uit
            • Citaat

            Comment

            • #7
              Alles lijkt inderdaad weer helemaal bij het oude te zijn.
              Mijn dank is groot!
              • Citaat

              Comment

              • #8
                Graag gedaan hoor
                • Citaat

                Comment

                Vorige template Volgende
                Sorry, you are not authorized to view this page
                Working...
                X