OK lets remove what remains. Once done let me know how the computer is behaving. And then we will revisit the internet banking advice
- Close any open browsers.
- Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
- Open notepad and copy/paste the text in the quotebox below into it:
File::
c:\docume~1\ADMINI~1\LOCALS~1\Temp\MUPO.exe
c:\docume~1\ADMINI~1\LOCALS~1\Temp\OJB.exe
Folder::
c:\documents and settings\standaard\Bureaublad\053ABD10B32BD920
Registry::
[HKLM~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
“3389:TCP”=-
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
“klsgczppbczcdummsndxTaskMgr”=-
Driver::
053ABD10B32BD920
MUPO
OJB
Save this as
CFScript.txt, in the same location as ComboFix.exe
http://img.photobucket.com/albums/v666/sUBs/CFScriptB-4.gif
Refering to the picture above, drag CFScript into ComboFix.exeWhen finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.