JanWesdijk

Hoi kape, ik zag in mijn Taakbeheer - Processen wat raars voorbij flitsen! Heeft dit er iets mee te maken? Er stond RTHDCPL.EXE en PEVS.EXE (Volgensmij ging beetje snel) allemaal met hoofdletters geschreven. Is dit iets? Hier de log: [ATTACH]31539[/ATTACH] Mvg Jan zoek-results3.txt

SORRYYY Dit is verkeerd vergeten script erin te plakken!! [ATTACH]31537[/ATTACH] Dat is de goede! zoek-results2.txt

Okee, bedankt. In mijn processen staat: RTHDCPL.EXE Alles in hoofdletters, dit vind ik verdacht zegt dit jullie iets?

Okee, bedankt.

Oke dit staat er Logfile of random's system information tool 1.09 (written by random/random) Run by Jan Wesdijk at 2014-04-23 21:00:56 Microsoft Windows XP Professional Service Pack 3 System drive C: has 113 GB (74%) free of 153 GB Total RAM: 3583 MB (73% free) ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-14 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7f232128-6f42-4f37-8efe-2e6020b2d478}] Spring Smart - C:\Program Files\Spring Smart\SpringSmartbho.dll [2013-11-07 249640] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C9C42510-9B41-42c1-9DCD-7282A2D07C61}C] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-02-17 1657448] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-02-22 86016] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-02-22 14888960] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "Hercules DJ Series TrayAgent"=C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [2013-05-10 2914640] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2013-10-04 20145368] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360] "Steam"=C:\Program Files\Steam\Steam.exe [2014-01-07 1815464] "Akamai NetSession Interface"=C:\Documents and Settings\Jan Wesdijk\Local Settings\Application Data\Akamai\netsession_win.exe [2014-03-06 4672920] "MicroUpdate"=C:\Documents and Settings\Jan Wesdijk\Mijn documenten\MSDCSC\msdcsc.exe [2014-04-21 674304] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "WindowsUpdate"=C:\Documents and Settings\Jan Wesdijk\Application Data\A82XcgxW\MGCvRNf.exe [2014-04-23 266752] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-26 190976] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"=0 "DisableRegistryTools"=1 "EnableLUA"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java Platform SE binary" "C:\Program Files\Java\jre7\bin\java.exe"="C:\Program Files\Java\jre7\bin\java.exe:*:Disabled:Java Platform SE binary" "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine" "C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe"="C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager" "C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe" "C:\Nexon\Combat Arms EU\NMService.exe"="C:\Nexon\Combat Arms EU\NMService.exe:*:Enabled:Nexon Messenger Core" "C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe" "C:\WINDOWS\system32\java.exe"="C:\WINDOWS\system32\java.exe:*:Enabled:Java Platform SE binary" "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA" "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\Program Files\GamersFirst\APB Reloaded\Binaries\APB.exe"="C:\Program Files\GamersFirst\APB Reloaded\Binaries\APB.exe:*:Enabled:APB: APB.exe" "C:\Program Files\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe"="C:\Program Files\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe:*:Enabled:APB: VivoxVoiceService.exe" "C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe"="C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe:*:Enabled:SAMBC" "C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare" "C:\Documents and Settings\All Users\Application Data\Battle.net\Agent\Agent.1544\Agent.exe"="C:\Documents and Settings\All Users\Application Data\Battle.net\Agent\Agent.1544\Agent.exe:*:Enabled:Battle.net Update Agent" "C:\Documents and Settings\All Users\Application Data\Battle.net\Agent\Agent.2045\Agent.exe"="C:\Documents and Settings\All Users\Application Data\Battle.net\Agent\Agent.2045\Agent.exe:*:Enabled:Battle.net Update Agent" "C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam" "C:\Program Files\Steam\SteamApps\common\Counter-Strike Source\hl2.exe"="C:\Program Files\Steam\SteamApps\common\Counter-Strike Source\hl2.exe:*:Enabled:Counter-Strike: Source" "C:\Program Files\Steam\SteamApps\common\GarrysMod\hl2.exe"="C:\Program Files\Steam\SteamApps\common\GarrysMod\hl2.exe:*:Enabled:Garry's Mod" "C:\Documents and Settings\Jan Wesdijk\Application Data\uTorrent\uTorrent.exe"="C:\Documents and Settings\Jan Wesdijk\Application Data\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe"="C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe:*:Enabled:Hercules® DJ Series Tray Bar" "C:\Documents and Settings\Jan Wesdijk\Local Settings\Application Data\MediaGet2\\Onlinetv\engine\mg_engine.exe"="C:\Documents and Settings\Jan Wesdijk\Local Settings\Application Data\MediaGet2\\Onlinetv\engine\mg_engine.exe:*:Enabled:MediaGet" "C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application" "C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service" "C:\Program Files\TeamViewer\Version8\TeamViewer.exe"="C:\Program Files\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application" "C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe" "C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe" "C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastSvc.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastUI.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avcenter.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avconfig.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgcsrvx.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgidsagent.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgnt.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgrsx.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avguard.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgui.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgwdsvc.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avscan.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdagent.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ccuac.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ComboFix.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\egui.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\elogsvc.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hijackthis.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\instup.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\keyscrambler.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbam.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamgui.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbampt.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamscheduler.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamservice.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MpCmdRun.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSASCui.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MsMpEng.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msseces.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nhs.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Njeeves.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Nnf.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Nprosec.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvoy.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rstrui.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\scheduler.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spybotsd.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wireshark.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Zanda.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zlclient.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zlhh.exe] "Debugger="C:\WINDOWS\system32\Microsoft.com [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midimapper"=midimap.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.trspch"=tssoft32.acm "vidc.cvid"=iccvid.dll "VIDC.I420"=msh263.drv "vidc.iv31"=ir32_32.dll "vidc.iv32"=ir32_32.dll "vidc.iv41"=ir41_32.ax "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "VIDC.YVYU"=msyuv.dll "wavemapper"=msacm32.drv "msacm.msg723"=msg723.acm "vidc.M263"=msh263.drv "vidc.M261"=msh261.drv "msacm.msaudio1"=msaud32.acm "msacm.sl_anet"=sl_anet.acm "msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax "vidc.iv50"=ir50_32.dll "msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm "VIDC.FPS1"=frapsvid.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "MSVideo8"=VfWWDM32.dll "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux3"=wdmaud.drv "vidc.tscc"=C:\WINDOWS\system32\tsccvid.dll "vidc.tsc2"=C:\WINDOWS\system32\tsc2_codec32.dll "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "aux4"=wdmaud.drv "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "aux5"=wdmaud.drv "wave6"=wdmaud.drv "mixer6"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======List of files/folders created in the last 1 month====== 2014-04-23 21:00:57 ----D---- C:\Program Files\trend micro 2014-04-23 21:00:56 ----D---- C:\rsit 2014-04-23 16:00:19 ----A---- C:\WINDOWS\system32\ie4uinitSrv.exe 2014-04-23 15:28:05 ----SHD---- C:\found.000 2014-04-22 20:44:52 ----D---- C:\Program Files\TeamViewer 2014-04-21 23:37:37 ----D---- C:\Program Files\PlurPush 2014-04-21 23:37:35 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\Systweak 2014-04-21 22:27:46 ----A---- C:\WINDOWS\system32\drivers\mconfig.sys 2014-04-21 22:09:45 ----D---- C:\Program Files\Microsoft 2014-04-21 22:07:21 ----A---- C:\Documents and Settings\Jan Wesdijk\Application Data\SPYARG HACK 1.5 64bits.exe 2014-04-21 22:05:26 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\dclogs 2014-04-21 21:04:56 ----RASH---- C:\WINDOWS\system32\Microsoft.com 2014-04-21 21:04:38 ----SHD---- C:\Program Files\Windows Manager 2014-04-21 21:04:26 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\A82XcgxW 2014-04-21 20:56:15 ----D---- C:\Documents and Settings\All Users\Application Data\Media Get LLC 2014-04-19 10:54:07 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT 2014-04-19 10:31:49 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\foobar2000 2014-04-19 10:31:43 ----D---- C:\Program Files\foobar2000 2014-04-19 10:15:22 ----D---- C:\WINDOWS\system32\appmgmt 2014-04-18 08:21:45 ----A---- C:\WINDOWS\system32\javaws.exe 2014-04-18 08:21:39 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll 2014-04-18 08:21:39 ----A---- C:\WINDOWS\system32\javaw.exe 2014-04-18 08:21:39 ----A---- C:\WINDOWS\system32\java.exe 2014-04-04 21:00:28 ----D---- C:\Program Files\Goat Simulator 2014-04-03 09:53:39 ----A---- C:\WINDOWS\ModemLog_Standaardmodem (1200 bps).txt ======List of files/folders modified in the last 1 month====== 2014-04-23 21:00:57 ----RD---- C:\Program Files 2014-04-23 20:59:47 ----D---- C:\WINDOWS\Prefetch 2014-04-23 20:56:37 ----D---- C:\WINDOWS\system32\dllcache 2014-04-23 20:55:54 ----D---- C:\Program Files\Outlook Express 2014-04-23 20:55:53 ----D---- C:\Program Files\Movie Maker 2014-04-23 17:48:57 ----D---- C:\WINDOWS\Temp 2014-04-23 17:13:43 ----D---- C:\Documents and Settings 2014-04-23 16:13:08 ----D---- C:\WINDOWS\system32\drivers 2014-04-23 16:13:01 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2014-04-23 16:08:33 ----D---- C:\WINDOWS\system32\CatRoot2 2014-04-23 16:00:20 ----D---- C:\WINDOWS 2014-04-23 16:00:19 ----D---- C:\WINDOWS\system32 2014-04-23 15:44:54 ----D---- C:\WINDOWS\system32\config 2014-04-23 15:30:18 ----D---- C:\Program Files\Steam 2014-04-23 15:29:26 ----D---- C:\WINDOWS\system32\LogFiles 2014-04-22 21:22:30 ----N---- C:\WINDOWS\SchedLgU.Txt 2014-04-22 20:52:01 ----RSD---- C:\WINDOWS\Fonts 2014-04-22 20:08:31 ----SHD---- C:\WINDOWS\Installer 2014-04-22 20:08:04 ----D---- C:\Documents and Settings\All Users\Application Data\Skype 2014-04-22 20:07:46 ----D---- C:\Program Files\Common Files 2014-04-22 20:04:24 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\uTorrent 2014-04-22 20:03:57 ----D---- C:\WINDOWS\Logs 2014-04-22 20:03:57 ----D---- C:\WINDOWS\Debug 2014-04-22 18:38:37 ----D---- C:\Nexon 2014-04-22 16:43:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2014-04-22 16:38:17 ----D---- C:\Program Files\Common Files\Blizzard Entertainment 2014-04-22 16:21:10 ----SD---- C:\WINDOWS\Tasks 2014-04-22 16:21:09 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\Solvusoft 2014-04-19 10:54:36 ----D---- C:\WINDOWS\system32\RTCOM 2014-04-19 10:54:17 ----HD---- C:\WINDOWS\inf 2014-04-19 10:54:17 ----D---- C:\WINDOWS\system32\ReinstallBackups 2014-04-18 11:42:02 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\.minecraft 2014-04-18 08:21:39 ----D---- C:\Program Files\Java 2014-04-04 21:02:01 ----D---- C:\WINDOWS\WinSxS 2014-04-03 16:51:36 ----D---- C:\WINDOWS\Registration 2014-04-03 11:49:38 ----D---- C:\WINDOWS\Network Diagnostic ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStor;Intel RAID Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2009-01-10 327192] R0 iastor78;iastor78; C:\WINDOWS\system32\drivers\iastor78.sys [2009-04-23 308248] R0 NvcMFlt;NvcMFlt; C:\WINDOWS\system32\DRIVERS\nvcw32mf.sys [2013-09-16 49192] R1 intelppm;Intel GV3-processorstuurprogramma; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448] R1 NGS;Norman General Security Driver; \??\c:\program files\norman\ngs\bin\ngs.sys [] R1 NPROSEC;Norman Security driver; \??\C:\Program Files\Norman\Ngs\Bin\nprosec.sys [] R1 WmiAcpi;Microsoft Windows Beheerinterface voor ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832] R2 Ndiskio;Ndiskio; \??\C:\Program Files\Norman\Nse\Bin\NDISKIO.SYS [] R2 nregsec;Norman Registry Security driver; \??\C:\Program Files\Norman\Ngs\Bin\nregsec.sys [] R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-11-26 187392] R3 HDAudBus;Microsoft UAA-busstuurprogramma voor High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384] R3 HidUsb;Microsoft HID Class-stuurprogramma; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2013-11-05 5589720] R3 mouhid;Stuurprogramma voor muis-HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-09-06 12288] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-03-11 7670208] R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-15 5888] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608] S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736] S3 Blfp;Broadcom Advanced Server Program Driver; C:\WINDOWS\system32\DRIVERS\baspxp32.sys [2008-10-28 89600] S3 Bulk;HDJBulk; C:\WINDOWS\System32\Drivers\HDJBulk.sys [2013-05-21 221104] S3 CCDECODE;Closed Caption-decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024] S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [] S3 HDJAsioK;HDJAsioK; C:\WINDOWS\System32\Drivers\HDJAsioK.sys [2013-05-21 274480] S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504] S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248] S3 NdisIP;Microsoft TV/Video-verbinding; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232] S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160] S3 usbccgp;Microsoft generiek hoofd-USB-stuurprogramma; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384] S3 usbscan;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976] S3 USBSTOR;Stuurprogramma voor USB-massaopslag; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] S3 usbvideo;USB-videoapparaat (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008] S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136] S3 WinUSB;Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2009-07-13 34944] S3 WSTCODEC;World Standard Teletext-codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-04-23 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-04-23 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 HerculesDJControlMP3;Hercules DJ Control MP3; C:\Program Files\Hercules\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE [2013-05-21 55296] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-04-14 182696] R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-02-22 172100] R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2013-07-28 76888] R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2014-02-07 5093216] R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-02 4972864] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-10 116648] S2 Norman ZANDA;Norman ZANDA; C:\Program Files\Norman\Npm\Bin\Zanda.exe [] S3 aspnet_state;ASP.NET-statusservice; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-10 116648] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 Scheduler;Norman Scheduler Service; C:\Program Files\Norman\Npm\Bin\scheduler.exe [] S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-11-19 489256] S3 WMPNetworkSvc;Windows Media Player Network Sharing-service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2014-04-21 975360] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] -----------------EOF----------------- - - - Updated - - - Op het moment doet me taakbeheer het weer. Norman enzo krijg ik nog steeds niet open en weet niet wat ik moet verwijderen in Processen.

Mijn computer is geïnfecteerd met een virus waardoor ik niet in mijn Taakbeheer, Norman map, Anti Malware Bytes map en allerlei dingen zoals virus scanners niet kan downloaden!!! Ik heb CCleaner en HiJackthis op me computer die het wel doen. Ik kreeg dit virus toen ik een bestand had gedownload zonder te weten dat me firewall en virusscanner uitstonden. Ik heb Firewall weer aangezet maar Norman Security Site wilt niet meer aan en het staat ook niet meer in me taakbalk. Ik kan het Norman mapje in program files niet meer in dus veel kan ik er niet aan doen. Sindsdien wordt het internet ook heel erg sloom, mijn Google Chrome deed heb ook niet maar ik heb net met CCleaner veel dingen verwijderd waardoor Google Chrome het weer deed. In mijn configuratiescherm staat ook geen Systeem en beveiliging meer. Samen met een vriend van me al gekeken via Teamviewer of we norman bestandjes konden plakken in mijn computer, lukte niet. MBAM wilt niet opstarten hij zegt dan dat hij MBAM gaat zoeken en als ik dan op bladeren klik kan ik er NIET in! Ik krijg dit bericht als ik Norman en Anti Malware Bytes en Taakbeheer opstart: Anti Malware Bytes: C:\Program Files\Malwarebytes' Anti-Malware is niet toegankelijk. Toegang geweigerd. Norman: C:\Program Files\Norman is niet toegankelijk. Toegang geweigerd. Taakbeheer: Taakbeheer is uitgeschakeld door de systeembeheerder. Dit vast ook zo met andere dingen waarvan ik het nog niet ontdekt heb. Ik zou het erg waarderen als jullie me konden helpen. Bedankt Jan Wesdijk