Hallo,
Heb je OTL nog op je pc staan?
Start OTL
Plak het volgende onder Custom Scans/Fixes
:Commands
TL
O34 - HKLM BootExecute: (autocheck turegopt /AM)
:Commands
Klik daarna bovenaan op de knop Run Fix,
Laat het programma ongestoord zijn werk doen. De pc zal na afloop opnieuw opgestart worden.
plaats dit logje en vertel hoe het gaat.
Gr.Ben
Hallo,
Ik wil nog even één ding bekijken, als dat goed is gaan we opruimen.
Download TDSSKStarter naar het bureaublad.
"TDSSKStarter.exe" gebruiken:
Sluit nu eerst alle nog openstaande programmavensters!
Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met TDSSKStarter.exe
(hier of hier) kan je lezen hoe je dat doet.
Windows 2000 en Windows XP: start de tool middels dubbelklik op "TDSSKStarter.exe".
Windows Vista en Windows 7: start de tool middels rechtsklik op "TDSSKStarter.exe" en dan kiezen voor Als Administrator uitvoeren.
Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten.
Post nu de inhoud van het geopende kladblokbestand in het volgende bericht.
Gr.Ben
hoi
U advies opgevolgd
hier het log
19:04:17.0259 1932 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
19:04:17.0260 1932 ============================================================
19:04:17.0260 1932 Current date / time: 2012/10/28 19:04:17.0260
19:04:17.0260 1932 SystemInfo:
19:04:17.0260 1932
19:04:17.0260 1932 OS Version: 6.1.7601 ServicePack: 1.0
19:04:17.0260 1932 Product type: Workstation
19:04:17.0260 1932 ComputerName: GEBRUIKER-PC
19:04:17.0260 1932 UserName: Gebruiker
19:04:17.0260 1932 Windows directory: C:\Windows
19:04:17.0260 1932 System windows directory: C:\Windows
19:04:17.0260 1932 Running under WOW64
19:04:17.0260 1932 Processor architecture: Intel x64
19:04:17.0260 1932 Number of processors: 4
19:04:17.0260 1932 Page size: 0x1000
19:04:17.0260 1932 Boot type: Normal boot
19:04:17.0260 1932 ============================================================
19:04:20.0233 1932 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type ‘K0’, Flags 0x00000040
19:04:20.0266 1932 ============================================================
19:04:20.0266 1932 \Device\Harddisk0\DR0:
19:04:20.0267 1932 MBR partitions:
19:04:20.0267 1932 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:04:20.0267 1932 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x25E61000
19:04:20.0267 1932 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x25E93800, BlocksNum 0x25E61000
19:04:20.0267 1932 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x4BCF4800, BlocksNum 0x28A11800
19:04:20.0267 1932 ============================================================
19:04:20.0291 1932 C: <-> \Device\Harddisk0\DR0\Partition4
19:04:20.0325 1932 D: <-> \Device\Harddisk0\DR0\Partition2
19:04:20.0371 1932 E: <-> \Device\Harddisk0\DR0\Partition3
19:04:20.0372 1932 ============================================================
19:04:20.0372 1932 Initialize success
19:04:20.0372 1932 ============================================================
19:04:20.0420 3440 ============================================================
19:04:20.0420 3440 Scan started
19:04:20.0420 3440 Mode: Auto (DCExact ); SigCheck; TDLFS; Silent;
19:04:20.0420 3440 ============================================================
19:04:24.0149 3440 ================ Scan system memory ========================
19:04:24.0149 3440 ================ Scan services =============================
19:04:24.0334 3440 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:04:24.0451 3440 ACPI C:\Windows\system32\drivers\ACPI.sys
19:04:24.0521 3440 AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:04:24.0688 3440 AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:04:25.0160 3440 AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:04:25.0434 3440 adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:04:25.0474 3440 adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:04:25.0499 3440 adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:04:25.0528 3440 AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:04:25.0661 3440 AFD C:\Windows\system32\drivers\afd.sys
19:04:25.0743 3440 agp440 C:\Windows\system32\drivers\agp440.sys
19:04:25.0790 3440 ALG C:\Windows\System32\alg.exe
19:04:25.0862 3440 aliide C:\Windows\system32\drivers\aliide.sys
19:04:25.0894 3440 amdide C:\Windows\system32\drivers\amdide.sys
19:04:25.0933 3440 AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:04:25.0992 3440 AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:04:26.0052 3440 amdsata C:\Windows\system32\drivers\amdsata.sys
19:04:26.0096 3440 amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:04:26.0123 3440 amdxata C:\Windows\system32\drivers\amdxata.sys
19:04:26.0148 3440 AppID C:\Windows\system32\drivers\appid.sys
19:04:26.0290 3440 AppIDSvc C:\Windows\System32\appidsvc.dll
19:04:26.0373 3440 Appinfo C:\Windows\System32\appinfo.dll
19:04:26.0445 3440 arc C:\Windows\system32\DRIVERS\arc.sys
19:04:26.0461 3440 arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:04:26.0552 3440 aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:04:26.0586 3440 AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:04:26.0661 3440 atapi C:\Windows\system32\drivers\atapi.sys
19:04:26.0696 3440 AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:04:26.0764 3440 AudioSrv C:\Windows\System32\Audiosrv.dll
19:04:26.0825 3440 avgtp C:\Windows\system32\drivers\avgtpx64.sys
19:04:26.0889 3440 AxInstSV C:\Windows\System32\AxInstSV.dll
19:04:26.0999 3440 b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:04:27.0079 3440 b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:04:27.0132 3440 BDESVC C:\Windows\System32\bdesvc.dll
19:04:27.0174 3440 Beep C:\Windows\system32\drivers\Beep.sys
19:04:27.0259 3440 BFE C:\Windows\System32\bfe.dll
19:04:27.0362 3440 BITS C:\Windows\system32\qmgr.dll
19:04:27.0461 3440 blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:04:27.0488 3440 bowser C:\Windows\system32\DRIVERS\bowser.sys
19:04:27.0518 3440 BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:04:27.0573 3440 BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:04:27.0644 3440 BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:04:27.0745 3440 Browser C:\Windows\System32\browser.dll
19:04:27.0776 3440 Brserid C:\Windows\System32\Drivers\Brserid.sys
19:04:27.0830 3440 BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:04:27.0855 3440 BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:04:27.0877 3440 BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:04:27.0901 3440 BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:04:27.0932 3440 bthserv C:\Windows\system32\bthserv.dll
19:04:27.0999 3440 cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:04:28.0089 3440 cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:04:28.0138 3440 CertPropSvc C:\Windows\System32\certprop.dll
19:04:28.0208 3440 circlass C:\Windows\system32\DRIVERS\circlass.sys
19:04:28.0254 3440 CLFS C:\Windows\system32\CLFS.sys
19:04:28.0306 3440 clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:04:28.0342 3440 clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:04:28.0426 3440 clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:04:28.0507 3440 clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:04:28.0535 3440 CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:04:28.0567 3440 cmdide C:\Windows\system32\drivers\cmdide.sys
19:04:28.0600 3440 CNG C:\Windows\system32\Drivers\cng.sys
19:04:28.0648 3440 Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:04:28.0680 3440 CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:04:28.0717 3440 crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:04:28.0748 3440 CryptSvc C:\Windows\system32\cryptsvc.dll
19:04:28.0803 3440 DcomLaunch C:\Windows\system32\rpcss.dll
19:04:28.0866 3440 defragsvc C:\Windows\System32\defragsvc.dll
19:04:28.0933 3440 DfsC C:\Windows\system32\Drivers\dfsc.sys
19:04:29.0031 3440 Dhcp C:\Windows\system32\dhcpcore.dll
19:04:29.0079 3440 discache C:\Windows\system32\drivers\discache.sys
19:04:29.0130 3440 Disk C:\Windows\system32\DRIVERS\disk.sys
19:04:29.0161 3440 Dnscache C:\Windows\System32\dnsrslvr.dll
19:04:29.0212 3440 dot3svc C:\Windows\System32\dot3svc.dll
19:04:29.0294 3440 Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
19:04:29.0360 3440 Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
19:04:29.0390 3440 dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
19:04:29.0447 3440 DPS C:\Windows\system32\dps.dll
19:04:29.0531 3440 drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:04:29.0606 3440 DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:04:29.0664 3440 EapHost C:\Windows\System32\eapsvc.dll
19:04:29.0802 3440 ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:04:29.0939 3440 EFS C:\Windows\System32\lsass.exe
19:04:30.0024 3440 ehRecvr C:\Windows\ehome\ehRecvr.exe
19:04:30.0090 3440 ehSched C:\Windows\ehome\ehsched.exe
19:04:30.0143 3440 elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:04:30.0172 3440 ErrDev C:\Windows\system32\drivers\errdev.sys
19:04:30.0218 3440 EventSystem C:\Windows\system32\es.dll
19:04:30.0279 3440 exfat C:\Windows\system32\drivers\exfat.sys
19:04:30.0345 3440 fastfat C:\Windows\system32\drivers\fastfat.sys
19:04:30.0477 3440 Fax C:\Windows\system32\fxssvc.exe
19:04:30.0631 3440 fdc C:\Windows\system32\DRIVERS\fdc.sys
19:04:30.0691 3440 fdPHost C:\Windows\system32\fdPHost.dll
19:04:30.0753 3440 FDResPub C:\Windows\system32\fdrespub.dll
19:04:30.0833 3440 FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:04:30.0853 3440 Filetrace C:\Windows\system32\drivers\filetrace.sys
19:04:30.0898 3440 flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:04:30.0932 3440 FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:04:30.0978 3440 FontCache C:\Windows\system32\FntCache.dll
19:04:31.0058 3440 FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:04:31.0084 3440 FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:04:31.0147 3440 fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
19:04:31.0215 3440 fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
19:04:31.0298 3440 Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:04:31.0333 3440 fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:04:31.0357 3440 gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:04:31.0394 3440 gpsvc C:\Windows\System32\gpsvc.dll
19:04:31.0506 3440 gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:04:31.0545 3440 gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:04:31.0606 3440 gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:04:31.0638 3440 hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:04:31.0698 3440 HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:04:31.0753 3440 HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:04:31.0785 3440 HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
19:04:31.0804 3440 HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:04:31.0824 3440 HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:04:31.0850 3440 HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:04:31.0878 3440 hidserv C:\Windows\System32\hidserv.dll
19:04:31.0930 3440 HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:04:31.0963 3440 hkmsvc C:\Windows\system32\kmsvc.dll
19:04:32.0014 3440 HomeGroupListener C:\Windows\system32\ListSvc.dll
19:04:32.0085 3440 HomeGroupProvider C:\Windows\system32\provsvc.dll
19:04:32.0162 3440 hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
19:04:32.0182 3440 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
19:04:32.0183 3440 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
19:04:32.0195 3440 hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
19:04:32.0202 3440 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
19:04:32.0202 3440 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
19:04:32.0217 3440 HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:04:32.0288 3440 HTTP C:\Windows\system32\drivers\HTTP.sys
19:04:32.0372 3440 hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:04:32.0397 3440 i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:04:32.0447 3440 iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:04:32.0540 3440 idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:04:32.0587 3440 iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:04:32.0616 3440 IKEEXT C:\Windows\System32\ikeext.dll
19:04:32.0677 3440 intelide C:\Windows\system32\drivers\intelide.sys
19:04:32.0704 3440 intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:04:32.0734 3440 IPBusEnum C:\Windows\system32\ipbusenum.dll
19:04:32.0804 3440 IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:04:32.0858 3440 iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:04:32.0910 3440 IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:04:32.0941 3440 IPNAT C:\Windows\system32\drivers\ipnat.sys
19:04:32.0979 3440 IRENUM C:\Windows\system32\drivers\irenum.sys
19:04:33.0031 3440 isapnp C:\Windows\system32\drivers\isapnp.sys
19:04:33.0057 3440 iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:04:33.0087 3440 kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:04:33.0118 3440 kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:04:33.0169 3440 KeyIso C:\Windows\system32\lsass.exe
19:04:33.0238 3440 KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:04:33.0290 3440 KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:04:33.0319 3440 ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:04:33.0395 3440 KtmRm C:\Windows\system32\msdtckrm.dll
19:04:33.0438 3440 LanmanServer C:\Windows\System32\srvsvc.dll
19:04:33.0485 3440 LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:04:33.0575 3440 lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:04:33.0659 3440 lltdsvc C:\Windows\System32\lltdsvc.dll
19:04:33.0716 3440 lmhosts C:\Windows\System32\lmhsvc.dll
19:04:33.0789 3440 LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:04:33.0815 3440 LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:04:33.0845 3440 LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:04:33.0875 3440 LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:04:33.0906 3440 luafv C:\Windows\system32\drivers\luafv.sys
19:04:33.0962 3440 MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:04:34.0028 3440 MBAMScheduler e:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:04:34.0152 3440 MBAMService e:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:04:34.0273 3440 Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:04:34.0292 3440 megasas C:\Windows\system32\DRIVERS\megasas.sys
19:04:34.0315 3440 MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:04:34.0402 3440 MMCSS C:\Windows\system32\mmcss.dll
19:04:34.0471 3440 Modem C:\Windows\system32\drivers\modem.sys
19:04:34.0538 3440 monitor C:\Windows\system32\DRIVERS\monitor.sys
19:04:34.0586 3440 mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:04:34.0614 3440 mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:04:34.0656 3440 mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:04:34.0714 3440 MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:04:34.0759 3440 mpio C:\Windows\system32\drivers\mpio.sys
19:04:34.0784 3440 mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:04:34.0848 3440 MpsSvc C:\Windows\system32\mpssvc.dll
19:04:34.0909 3440 MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:04:34.0942 3440 mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:04:35.0002 3440 mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:04:35.0028 3440 mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:04:35.0072 3440 msahci C:\Windows\system32\drivers\msahci.sys
19:04:35.0102 3440 msdsm C:\Windows\system32\drivers\msdsm.sys
19:04:35.0143 3440 MSDTC C:\Windows\System32\msdtc.exe
19:04:35.0167 3440 Msfs C:\Windows\system32\drivers\Msfs.sys
19:04:35.0205 3440 mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:04:35.0241 3440 msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:04:35.0285 3440 MSiSCSI C:\Windows\system32\iscsiexe.dll
19:04:35.0354 3440 MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:04:35.0460 3440 MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:04:35.0502 3440 MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:04:35.0560 3440 MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:04:35.0615 3440 MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:04:35.0632 3440 mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:04:35.0648 3440 MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:04:35.0683 3440 MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:04:35.0705 3440 Mup C:\Windows\system32\Drivers\mup.sys
19:04:35.0750 3440 napagent C:\Windows\system32\qagentRT.dll
19:04:35.0823 3440 NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:04:35.0889 3440 NDIS C:\Windows\system32\drivers\ndis.sys
19:04:35.0936 3440 NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:04:35.0994 3440 NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:04:36.0076 3440 Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:04:36.0116 3440 NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:04:36.0188 3440 NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:04:36.0241 3440 Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:04:36.0253 3440 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:04:36.0253 3440 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:04:36.0261 3440 NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:04:36.0296 3440 NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:04:36.0340 3440 Netlogon C:\Windows\system32\lsass.exe
19:04:36.0367 3440 Netman C:\Windows\System32\netman.dll
19:04:36.0423 3440 NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:04:36.0444 3440 NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:04:36.0469 3440 netprofm C:\Windows\System32\netprofm.dll
19:04:36.0527 3440 netr7364 C:\Windows\system32\DRIVERS\netr7364.sys
19:04:36.0566 3440 NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:04:36.0575 3440 NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:04:36.0591 3440 nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:04:36.0623 3440 NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:04:36.0658 3440 NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
19:04:36.0691 3440 NlaSvc C:\Windows\System32\nlasvc.dll
19:04:36.0744 3440 Npfs C:\Windows\system32\drivers\Npfs.sys
19:04:36.0820 3440 nsi C:\Windows\system32\nsisvc.dll
19:04:36.0867 3440 nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:04:36.0941 3440 Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:04:37.0035 3440 Null C:\Windows\system32\drivers\Null.sys
19:04:37.0101 3440 NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:04:37.0500 3440 nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:04:37.0671 3440 nvraid C:\Windows\system32\drivers\nvraid.sys
19:04:37.0705 3440 nvstor C:\Windows\system32\drivers\nvstor.sys
19:04:37.0812 3440 nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
19:04:37.0877 3440 nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:04:37.0894 3440 ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:04:37.0953 3440 ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:04:38.0100 3440 osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:04:38.0298 3440 p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:04:38.0357 3440 p2psvc C:\Windows\system32\p2psvc.dll
19:04:38.0399 3440 Parport C:\Windows\system32\DRIVERS\parport.sys
19:04:38.0453 3440 partmgr C:\Windows\system32\drivers\partmgr.sys
19:04:38.0487 3440 PcaSvc C:\Windows\System32\pcasvc.dll
19:04:38.0545 3440 pci C:\Windows\system32\drivers\pci.sys
19:04:38.0569 3440 pciide C:\Windows\system32\drivers\pciide.sys
19:04:38.0603 3440 pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:04:38.0642 3440 pcw C:\Windows\system32\drivers\pcw.sys
19:04:38.0692 3440 PEAUTH C:\Windows\system32\drivers\peauth.sys
19:04:38.0829 3440 PerfHost C:\Windows\SysWow64\perfhost.exe
19:04:38.0919 3440 pla C:\Windows\system32\pla.dll
19:04:39.0052 3440 PlugPlay C:\Windows\system32\umpnpmgr.dll
19:04:39.0150 3440 Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:04:39.0160 3440 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:04:39.0160 3440 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:04:39.0185 3440 PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:04:39.0222 3440 PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:04:39.0257 3440 PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:04:39.0328 3440 Power C:\Windows\system32\umpo.dll
19:04:39.0389 3440 PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:04:39.0447 3440 Processor C:\Windows\system32\DRIVERS\processr.sys
19:04:39.0499 3440 ProfSvc C:\Windows\system32\profsvc.dll
19:04:39.0533 3440 ProtectedStorage C:\Windows\system32\lsass.exe
19:04:39.0592 3440 Psched C:\Windows\system32\DRIVERS\pacer.sys
19:04:39.0677 3440 ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:04:39.0759 3440 ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:04:39.0793 3440 QWAVE C:\Windows\system32\qwave.dll
19:04:39.0843 3440 QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:04:39.0886 3440 RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:04:39.0940 3440 RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:04:39.0987 3440 RasAuto C:\Windows\System32\rasauto.dll
19:04:40.0025 3440 Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:04:40.0093 3440 RasMan C:\Windows\System32\rasmans.dll
19:04:40.0156 3440 RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:04:40.0192 3440 RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:04:40.0239 3440 rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:04:40.0295 3440 rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:04:40.0314 3440 RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:04:40.0357 3440 RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:04:40.0404 3440 RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:04:40.0450 3440 RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:04:40.0503 3440 rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:04:40.0543 3440 RemoteAccess C:\Windows\System32\mprdim.dll
19:04:40.0592 3440 RemoteRegistry C:\Windows\system32\regsvc.dll
19:04:40.0687 3440 RichVideo C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
19:04:40.0733 3440 RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:04:40.0783 3440 RpcLocator C:\Windows\system32\locator.exe
19:04:40.0806 3440 RpcSs C:\Windows\System32\rpcss.dll
19:04:40.0858 3440 rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:04:40.0937 3440 RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:04:40.0969 3440 SamSs C:\Windows\system32\lsass.exe
19:04:40.0996 3440 sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:04:41.0012 3440 SCardSvr C:\Windows\System32\SCardSvr.dll
19:04:41.0089 3440 scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:04:41.0143 3440 Schedule C:\Windows\system32\schedsvc.dll
19:04:41.0240 3440 SCPolicySvc C:\Windows\System32\certprop.dll
19:04:41.0290 3440 SDRSVC C:\Windows\System32\SDRSVC.dll
19:04:41.0330 3440 secdrv C:\Windows\system32\drivers\secdrv.sys
19:04:41.0375 3440 seclogon C:\Windows\system32\seclogon.dll
19:04:41.0435 3440 SENS C:\Windows\system32\sens.dll
19:04:41.0517 3440 SensrSvc C:\Windows\system32\sensrsvc.dll
19:04:41.0561 3440 Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:04:41.0598 3440 Serial C:\Windows\system32\DRIVERS\serial.sys
19:04:41.0631 3440 sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:04:41.0690 3440 SessionEnv C:\Windows\system32\sessenv.dll
19:04:41.0759 3440 sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:04:41.0803 3440 sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:04:41.0825 3440 sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:04:41.0855 3440 sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:04:41.0900 3440 SharedAccess C:\Windows\System32\ipnathlp.dll
19:04:41.0948 3440 ShellHWDetection C:\Windows\System32\shsvcs.dll
19:04:42.0003 3440 SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:04:42.0023 3440 SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:04:42.0230 3440 Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:04:42.0356 3440 SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:04:42.0383 3440 Smb C:\Windows\system32\DRIVERS\smb.sys
19:04:42.0443 3440 SNMPTRAP C:\Windows\System32\snmptrap.exe
19:04:42.0467 3440 spldr C:\Windows\system32\drivers\spldr.sys
19:04:42.0519 3440 Spooler C:\Windows\System32\spoolsv.exe
19:04:42.0645 3440 sppsvc C:\Windows\system32\sppsvc.exe
19:04:42.0821 3440 sppuinotify C:\Windows\system32\sppuinotify.dll
19:04:42.0899 3440 srv C:\Windows\system32\DRIVERS\srv.sys
19:04:42.0956 3440 srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:04:42.0972 3440 srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:04:43.0009 3440 SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:04:43.0056 3440 SstpSvc C:\Windows\system32\sstpsvc.dll
19:04:43.0128 3440 stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:04:43.0168 3440 stisvc C:\Windows\System32\wiaservc.dll
19:04:43.0205 3440 swenum C:\Windows\system32\drivers\swenum.sys
19:04:43.0292 3440 SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
19:04:43.0461 3440 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
19:04:43.0461 3440 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
19:04:43.0482 3440 swprv C:\Windows\System32\swprv.dll
19:04:43.0611 3440 SysMain C:\Windows\system32\sysmain.dll
19:04:43.0685 3440 TabletInputService C:\Windows\System32\TabSvc.dll
19:04:43.0746 3440 TapiSrv C:\Windows\System32\tapisrv.dll
19:04:43.0892 3440 TBS C:\Windows\System32\tbssvc.dll
19:04:44.0000 3440 Tcpip C:\Windows\system32\drivers\tcpip.sys
19:04:44.0133 3440 TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:04:44.0178 3440 tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:04:44.0227 3440 TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:04:44.0267 3440 TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:04:44.0301 3440 tdx C:\Windows\system32\DRIVERS\tdx.sys
19:04:44.0348 3440 TermDD C:\Windows\system32\drivers\termdd.sys
19:04:44.0383 3440 TermService C:\Windows\System32\termsrv.dll
19:04:44.0445 3440 Themes C:\Windows\system32\themeservice.dll
19:04:44.0484 3440 THREADORDER C:\Windows\system32\mmcss.dll
19:04:44.0516 3440 TrkWks C:\Windows\System32\trkwks.dll
19:04:44.0593 3440 TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:04:44.0673 3440 tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:04:44.0739 3440 TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:04:44.0799 3440 tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:04:44.0866 3440 uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:04:44.0888 3440 udfs C:\Windows\system32\DRIVERS\udfs.sys
19:04:44.0935 3440 UI0Detect C:\Windows\system32\UI0Detect.exe
19:04:44.0956 3440 uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:04:44.0990 3440 umbus C:\Windows\system32\drivers\umbus.sys
19:04:45.0013 3440 UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:04:45.0035 3440 upnphost C:\Windows\System32\upnphost.dll
19:04:45.0106 3440 USB28xxBGA C:\Windows\system32\DRIVERS\emBDA64.sys
19:04:45.0181 3440 USB28xxOEM C:\Windows\system32\DRIVERS\emOEM64.sys
19:04:45.0246 3440 usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:04:45.0294 3440 usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:04:45.0333 3440 usbcir C:\Windows\system32\drivers\usbcir.sys
19:04:45.0389 3440 usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:04:45.0417 3440 usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:04:45.0455 3440 usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:04:45.0512 3440 usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:04:45.0565 3440 usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:04:45.0611 3440 USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:04:45.0658 3440 usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:04:45.0708 3440 usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:04:45.0757 3440 usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
19:04:45.0800 3440 UxSms C:\Windows\System32\uxsms.dll
19:04:45.0864 3440 VaultSvc C:\Windows\system32\lsass.exe
19:04:45.0878 3440 vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:04:45.0913 3440 vds C:\Windows\System32\vds.exe
19:04:45.0972 3440 vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:04:45.0988 3440 VgaSave C:\Windows\System32\drivers\vga.sys
19:04:46.0024 3440 vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:04:46.0049 3440 viaide C:\Windows\system32\drivers\viaide.sys
19:04:46.0060 3440 volmgr C:\Windows\system32\drivers\volmgr.sys
19:04:46.0097 3440 volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:04:46.0114 3440 volsnap C:\Windows\system32\drivers\volsnap.sys
19:04:46.0139 3440 vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:04:46.0208 3440 VSS C:\Windows\system32\vssvc.exe
19:04:46.0323 3440 vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:04:46.0368 3440 vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:04:46.0403 3440 vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:04:46.0425 3440 W32Time C:\Windows\system32\w32time.dll
19:04:46.0469 3440 WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:04:46.0494 3440 WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:04:46.0521 3440 Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:04:46.0593 3440 WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:04:46.0700 3440 wbengine C:\Windows\system32\wbengine.exe
19:04:46.0800 3440 WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:04:46.0835 3440 wcncsvc C:\Windows\System32\wcncsvc.dll
19:04:46.0870 3440 WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:04:46.0921 3440 Wd C:\Windows\system32\DRIVERS\wd.sys
19:04:46.0950 3440 Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:04:47.0000 3440 WdiServiceHost C:\Windows\system32\wdi.dll
19:04:47.0079 3440 WdiSystemHost C:\Windows\system32\wdi.dll
19:04:47.0133 3440 WebClient C:\Windows\System32\webclnt.dll
19:04:47.0220 3440 Wecsvc C:\Windows\system32\wecsvc.dll
19:04:47.0283 3440 wercplsupport C:\Windows\System32\wercplsupport.dll
19:04:47.0331 3440 WerSvc C:\Windows\System32\WerSvc.dll
19:04:47.0376 3440 WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:04:47.0419 3440 WIMMount C:\Windows\system32\drivers\wimmount.sys
19:04:47.0503 3440 Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:04:47.0687 3440 WinRM C:\Windows\system32\WsmSvc.dll
19:04:47.0830 3440 Wlansvc C:\Windows\System32\wlansvc.dll
19:04:47.0972 3440 wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:04:48.0072 3440 WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:04:48.0109 3440 wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:04:48.0143 3440 WPCSvc C:\Windows\System32\wpcsvc.dll
19:04:48.0177 3440 WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:04:48.0207 3440 ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:04:48.0264 3440 wscsvc C:\Windows\system32\wscsvc.dll
19:04:48.0395 3440 wuauserv C:\Windows\system32\wuaueng.dll
19:04:48.0509 3440 WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:04:48.0593 3440 WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:04:48.0659 3440 wudfsvc C:\Windows\System32\WUDFSvc.dll
19:04:48.0721 3440 WwanSvc C:\Windows\System32\wwansvc.dll
19:04:48.0806 3440 ================ Scan global ===============================
19:04:48.0821 3440 C:\Windows\system32\basesrv.dll
19:04:48.0842 3440 C:\Windows\system32\winsrv.dll
19:04:48.0852 3440 C:\Windows\system32\winsrv.dll
19:04:48.0871 3440 C:\Windows\system32\sxssrv.dll
19:04:48.0899 3440 C:\Windows\system32\services.exe
19:04:48.0904 3440 ================ Scan MBR ==================================
19:04:48.0921 3440 \Device\Harddisk0\DR0
19:04:49.0720 3440 ================ Scan VBR ==================================
19:04:49.0727 3440 \Device\Harddisk0\DR0\Partition1
19:04:49.0733 3440 \Device\Harddisk0\DR0\Partition2
19:04:49.0752 3440 \Device\Harddisk0\DR0\Partition3
19:04:49.0770 3440 \Device\Harddisk0\DR0\Partition4
19:04:49.0776 3440 ================ Scan UEFI extensions ======================
19:04:49.0776 3440 ================ Scan active images ========================
19:04:49.0776 3440 ============================================================
19:04:49.0776 3440 Scan finished
19:04:49.0776 3440 ============================================================
19:04:50.0660 2004 Deinitialize success
.
==============================================
System Restore Point Check:
.
TDSSKiller Starter Restore Point Created Succesfully
==============================================
Registry Export
.
==============================================
EOF
Hallo,
Dat ziet er netjes uit.
Malwarebytes kan je laten staan en één maal in de week (na te hebben geupdate) je pc mee scannen.
Download OTC.exe (by OldTimer)
• Plaats het bestand op je bureaublad.
• Zorg dat er een internetverbinding is.
• Klik vervolgens met je rechtermuisknop op OTCleanIt.exe en kies voor Run as Administrator (Nederlands: Uitvoeren als Administrator) om het programma te starten.
• Lukt dat niet , doen dan dubbelklikken op het icoon.
• Klik nu op de knop “CleanUp!”
• Als je firewall, of een ander beveiligingsprogramma, een waarschuwing geeft dat OTC.exe internettoegang wil, mag je dit toestaan, het programma heeft die connectie nodig.
• OTC zal als laatste vragen of je de computer herstarten wilt, dit mag je toestaan, hiermee verwijdert het zichzelf ook.
Nota: Het gebruik van OTC.exe zal alle gebruikte tools(inclusief bijbehorende logs en backupmappen) van je computer doen verwijderen.
Leeg nog even je prullenbak en maak een nieuw systeemherstelpunt aan.
Gr.Ben
Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.
Doorzoek het forum
Zoeken met Startpagina
Startpagina Thema's